Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2010-1219

EPSS 3.28% · P87
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2010-1219

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Directory traversal vulnerability in the JA News (com_janews) component 1.0 for Joomla! allows remote attackers to read arbitrary local files via a .. (dot dot) in the controller parameter to index.php. NOTE: some of these details are obtained from third party information.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Com_Janews JA News组件目录遍历漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Joomla!是一款开放源码的内容管理系统(CMS)。 Joomla!的JA News(com_janews)组件1.0中存在目录遍历漏洞。远程攻击者可借助index.php的controller参数中的“ ..”操作符包含并执行任意本地文件。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2010-1219

#POC DescriptionSource LinkShenlong Link
1A directory traversal vulnerability in the JA News (com_janews) component 1.0 for Joomla! allows remote attackers to read arbitrary local files via a .. (dot dot) in the controller parameter to index.php.https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2010/CVE-2010-1219.yamlPOC Details
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2010-1219

登录查看更多情报信息。

Same Patch Batch · n/a · 2010-03-30 · 49 CVEs total

CVE-2010-0522Apple Mac OS X Server Admin 共享连接权限许可和访问控制漏洞
CVE-2010-0525Apple Mac OS X Mail 逻辑错误漏洞
CVE-2010-0534Apple Mac OS X Wiki Server权限许可和访问控制漏洞
CVE-2010-0056Apple Mac OS AppKit Cocoa拼写检查缓冲区溢出
CVE-2010-0057Apple Mac OS AFP Server 权限许可和访问控制漏洞
CVE-2010-0058Apple Mac OS ClamAV freshclam设计错误漏洞
CVE-2010-0059Apple Mac OS CoreAudio缓冲区溢出漏洞
CVE-2010-0533Apple Mac OS X AFP共享的路径目录遍历漏洞
CVE-2009-2801Apple Mac OS 应用防火墙 权限许可和访问控制漏洞
CVE-2010-0523Apple Mac OS X Wiki Server敏感信息泄露漏洞
CVE-2010-0524Apple Mac OS X FreeRADIUS权限许可和访问控制漏洞
CVE-2010-0521Apple Mac OS X Server Admin权限许可和访问控制漏洞
CVE-2010-0520Apple Mac OS X QuickTime FLC堆缓冲区溢出漏洞
CVE-2010-0519Apple Mac OS X QuickTime FlashPix整数溢出漏洞
CVE-2010-0518Apple Mac OS X QuickTime Sorenson内存破坏漏洞
CVE-2010-0517Apple Mac OS X QuickTime M-JPEG堆缓冲区溢出漏洞
CVE-2010-0516Apple Mac OS X QuickTime RLE堆缓冲区溢出漏洞
CVE-2010-0515Apple Mac OS X QuickTime H.264缓冲区溢出漏洞
CVE-2010-0514Apple Mac OS X QuickTime H.261堆溢出漏洞
CVE-2010-0513Apple Mac OS X PS Normalizer PostScript栈溢出漏洞

Showing top 20 of 49 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2010-1219

No comments yet

Leave a comment