MidnightBSD

Advisories for foobla

CVE-2010-2920 MEDIUM

Directory traversal vulnerability in the Foobla Suggestions (com_foobla_suggestions) component 1.5.1.2 for Joomla! allows remote attackers to read arbitrary files via directory traversal sequences in the controller parameter to index.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
foobla com_foobla_suggestions 1.5.1.2
CVE-2011-4804 MEDIUM

Directory traversal vulnerability in the obSuggest (com_obsuggest) component before 1.8 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
foobla com_obsuggest 1.5.1.4
foobla com_obsuggest 1.5.1.6
foobla com_obsuggest *
foobla com_obsuggest 1.5.1.1.20090922
foobla com_obsuggest 1.5.0.1
foobla com_obsuggest 1.5.1.2
foobla com_obsuggest 1.5.1.7
foobla com_obsuggest 1.6.1
foobla com_obsuggest 1.5.1.5