Directory Traversal Vulnerability in Ultimate Portfolio Component for Joomla!
CVE-2010-1659

Currently unrated

Key Information:

Vendor: Webkul
Status: Com Ultimateportfolio
Vendor: CVE Published:; 3 May 2010

Summary

A directory traversal vulnerability exists in the Ultimate Portfolio component for Joomla! version 1.0. This flaw enables remote attackers to exploit the controller parameter in the index.php file to access and read sensitive files on the server. By using specially crafted input, an attacker can traverse directories, potentially exposing confidential data and compromising the security of the affected system.

References

http://packetstormsecurity.org/1004-exploits/joomlaultima...

x_refsource_MISC

http://www.exploit-db.com/exploits/12426

exploitx_refsource_EXPLOIT-DB

http://www.vupen.com/english/advisories/2010/1008

vdb-entryx_refsource_VUPEN

Timeline

Vulnerability published
May 3, 2010
Vulnerability Reserved
Apr 30, 2010