CVE-2010-0944 – Joomla! Component com_jcollection - Directory Traversal

https://notcve.org/view.php?id=CVE-2010-0944

Directory traversal vulnerability in the JCollection (com_jcollection) component for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php. Vulnerabilidad de salto de directorio en el componente para Joomla! JCollection (com_jcollection), permite a atacantes remotos leer ficheros locales de su elección al utilizar caracteres .. • https://www.exploit-db.com/exploits/11088 http://packetstormsecurity.org/1001-exploits/joomlajcollection-traversal.txt http://www.exploit-db.com/exploits/11088 http://www.securityfocus.com/bid/37691 https://exchange.xforce.ibmcloud.com/vulnerabilities/55514 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •