MidnightBSD

Advisories for masselink

CVE-2010-2507 MEDIUM

Directory traversal vulnerability in the Picasa2Gallery (com_picasa2gallery) component 1.2.8 and earlier for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
masselink com_picasa2gallery 1.1.7
masselink com_picasa2gallery 1.1.9
masselink com_picasa2gallery 1.2.1
masselink com_picasa2gallery 1.2.7
masselink com_picasa2gallery 1.1.0
masselink com_picasa2gallery 1.2.5
masselink com_picasa2gallery *
masselink com_picasa2gallery 1.0.0
masselink com_picasa2gallery 1.2.2