MidnightBSD

Advisories for software.realtyna

CVE-2010-1307 MEDIUM

Directory traversal vulnerability in the Magic Updater (com_joomlaupdater) component for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
software.realtyna com_joomlaupdater 1.2.1
software.realtyna com_joomlaupdater 2.0.3
software.realtyna com_joomlaupdater 1.3.1
software.realtyna com_joomlaupdater 2.0.6
software.realtyna com_joomlaupdater 1.2.2
software.realtyna com_joomlaupdater 1.4
software.realtyna com_joomlaupdater 2.0.4
software.realtyna com_joomlaupdater 2.0.2
software.realtyna com_joomlaupdater 2.0.8
software.realtyna com_joomlaupdater 2.0.1
software.realtyna com_joomlaupdater 2.0.7
software.realtyna com_joomlaupdater 1.1
software.realtyna com_joomlaupdater 1.3.0
software.realtyna com_joomlaupdater 1.3.2
software.realtyna com_joomlaupdater 3.0.0
software.realtyna com_joomlaupdater 1.0
software.realtyna com_joomlaupdater 1.2
software.realtyna com_joomlaupdater 2.0.5
software.realtyna com_joomlaupdater 2.0.0