CVSS: 9.1EPSS: 0%CPEs: 2EXPL: 3CVE-2010-2033 – Joomla! Component Percha Multicategory Article 0.6 - 'Controller' Arbitrary File Access
https://notcve.org/view.php?id=CVE-2010-2033
25 May 2010 — Directory traversal vulnerability in the Percha Multicategory Article (com_perchacategoriestree) component 0.6 for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php. Vulnerabilidad de salto de directorio en el componente Percha Multicategory Article (com_perchacategoriestree) v0.6 de Joomla!. Permite a atacantes remotos leer ficheros de su elección y, posiblemente, realizar otras acciones a través de... • https://www.exploit-db.com/exploits/34008 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 9.1EPSS: 0%CPEs: 2EXPL: 3CVE-2010-2034 – Joomla! Component Percha Image Attach 1.1 - 'Controller' Traversal Arbitrary File Access
https://notcve.org/view.php?id=CVE-2010-2034
25 May 2010 — Directory traversal vulnerability in the Percha Image Attach (com_perchaimageattach) component 1.1 for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php. Vulnerabilidad de salto de directorio en el componente Percha Image Attach (com_perchaimageattach) v1.1 de Joomla!. Permite a atacantes remotos leer ficheros de su elección y, posiblemente, realizar otras acciones a través de un .. • https://www.exploit-db.com/exploits/34003 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 9.1EPSS: 0%CPEs: 2EXPL: 3CVE-2010-2035 – Joomla! Component Percha Gallery 1.6 Beta - 'Controller' Traversal Arbitrary File Access
https://notcve.org/view.php?id=CVE-2010-2035
25 May 2010 — Directory traversal vulnerability in the Percha Gallery (com_perchagallery) component 1.6 Beta for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php. Vulnerabilidad de salto de directorio en el componente Percha Gallery (com_perchagallery) v1.6 Beta de Joomla!. Permite a atacantes remotos leer ficheros de su elección y, posiblemente, tener otro impacto a través de un .. • https://www.exploit-db.com/exploits/34006 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 9.1EPSS: 0%CPEs: 2EXPL: 3CVE-2010-2036 – Joomla! Component Percha Fields Attach 1.0 - 'Controller' Traversal Arbitrary File Access
https://notcve.org/view.php?id=CVE-2010-2036
25 May 2010 — Directory traversal vulnerability in the Percha Fields Attach (com_perchafieldsattach) component 1.x for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php. Vulnerabilidad de salto de directorio en el componente Percha Fields Attach (com_perchafieldsattach) v1.x de Joomla!. Permite a atacantes remotos leer ficheros de su elección y, posiblemente, tener otro impacto a través de un .. • https://www.exploit-db.com/exploits/34004 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 9.1EPSS: 0%CPEs: 2EXPL: 3CVE-2010-2037 – Joomla! Component Percha Downloads Attach 1.1 - 'Controller' Traversal Arbitrary File Access
https://notcve.org/view.php?id=CVE-2010-2037
25 May 2010 — Directory traversal vulnerability in the Percha Downloads Attach (com_perchadownloadsattach) component 1.1 for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php. Vulnerabilidad de salto de directorio en el componente Percha Downloads Attach (com_perchadownloadsattach) v1.1 de Joomla!. Permite a atacantes remotos leer ficheros de su elección y, posiblemente, tener otros impactos a través de un .. • https://www.exploit-db.com/exploits/34005 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 4CVE-2010-0694 – Joomla! Component com_perchagallery - SQL Injection
https://notcve.org/view.php?id=CVE-2010-0694
23 Feb 2010 — SQL injection vulnerability in the PerchaGallery (com_perchagallery) component before 1.5b for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in an editunidad action to index.php. Vulnerabilidad de inyección SQL en el componente PerchaGallery (com_perchagallery) anteriores a v1.5b para Joomla! permite a atacantes remotos inyectar secuencias arbitrarias de comandos web o HTML a través del parámetro "id" en una acción "editunidad" a index.php. • https://www.exploit-db.com/exploits/11024 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •