Directory Traversal Vulnerability in Harmis JE Messenger for Joomla!
CVE-2019-9922
5.8MEDIUM
What is CVE-2019-9922?
A directory traversal vulnerability exists in the Harmis JE Messenger component version 1.2.2 for Joomla!, which allows attackers to read arbitrary files on the server. This could potentially expose sensitive information and configuration files, posing a significant risk to website security. Proper validation mechanisms and security measures should be implemented to mitigate this vulnerability.
References
EPSS Score
84% chance of being exploited in the next 30 days.
CVSS V3.1
Score:
5.8
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Changed
CVSS V3.0
Score:
5.8
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Changed
Timeline
Vulnerability published
Vulnerability Reserved