Limited Black Friday Offer:

Joomla! Component Canteen 1.0 - Local File Inclusion CVE-2010-4977 Scanner

There is a directory traversal vulnerability in Joomla! Component Canteen 1.0, which allow remote attackers to read arbitrary files.

Short Info

Level

High

Type

Single Scan

Can be used by

Asset Owner

Estimated Time

10 sec

Scan only one

Url

Parent Category

Joomla! Component Canteen 1.0 - Local File Inclusion CVE-2010-4977 Scanner Detail

SQL injection vulnerability in menu.php in the Canteen (com_canteen) component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the mealid parameter to index.php.

http://packetstormsecurity.org/1007-exploits/joomlacanteen-lfisql.txt
http://securityreason.com/securityalert/8495
http://www.salvatorefresta.net/files/adv/Canteen%20Joomla%20Component%201.0%20Multiple%20Remote%20Vulnerabilities-04072010.txt
http://www.securityfocus.com/archive/1/512170/100/0/threaded
http://www.securityfocus.com/bid/41358
https://exchange.xforce.ibmcloud.com/vulnerabilities/60103