CVE

Id
44541  
CVE No.
CVE-2010-1957  
Status
Candidate  
Description
Directory traversal vulnerability in the Love Factory (com_lovefactory) component 1.3.4 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.  
Phase
Assigned (20100518)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
485735 44541 CVE-2010-1957 EXPLOIT-DB:12235  View
485736 44541 CVE-2010-1957 URL:http://www.exploit-db.com/exploits/12235  View
485737 44541 CVE-2010-1957 MISC:http://packetstormsecurity.org/1004-exploits/joomlalovefactory-lfi.txt  View
485738 44541 CVE-2010-1957 BID:39512  View
485739 44541 CVE-2010-1957 URL:http://www.securityfocus.com/bid/39512  View
485740 44541 CVE-2010-1957 OSVDB:63803  View
485741 44541 CVE-2010-1957 URL:http://osvdb.org/63803  View
485742 44541 CVE-2010-1957 SECUNIA:39471  View
485743 44541 CVE-2010-1957 URL:http://secunia.com/advisories/39471  View
485744 44541 CVE-2010-1957 XF:comlovefactory-index-file-inlclude(57849)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
39001 JVNDB-2010-004786 HP OV NNM の ovwebsnmpsrv.exe の ovutil.dll におけるバッファオーバーフローの脆弱性 HP OpenView Network Node Manager (OV NNM) の ovwebsnmpsrv.exe の ovutil.dll は、sprintf 関数への呼び出しで適切に処理しないため、バッファオーバーフローの脆弱性が存在します。 CVE-2010-1961 44541 10 http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-004786.html  View