RSS   Vulnerabilities for 'Jw allvideos'   RSS

2010-02-23
 
CVE-2010-0696

CWE-22
 

 
Directory traversal vulnerability in includes/download.php in the JoomlaWorks AllVideos (Jw_allVideos) plugin 3.0 through 3.2 for Joomla! allows remote attackers to read arbitrary files via a ./../.../ (modified dot dot) in the file parameter.

 

 >>> Vendor: Joomlaworks 3 Products
Com k2
Jw allvideos
K2


Copyright 2024, cxsecurity.com

 

Back to Top