Joomla! Component CCNewsLetter - Local File Inclusion CVE-2010-0467 Scanner

Details
Stay Up To Date
Asset Type

DOMAIN,IP,URL

Need Membership

Yes

Asset Verify

Yes

API Support

Yes

Estimate Time (Second)

10

Joomla! Component CCNewsLetter - Local File Inclusion CVE-2010-0467 Scanner Detail

In Joomla! Component CCNewsLetter, there is Local File Inclusion vulnerability.

Directory traversal vulnerability in the ccNewsletter (com_ccnewsletter) component 1.0.5 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter in a ccnewsletter action to index.php.

Some Advice for Common Problems

When an attacker knows which parameters and value combinations are used in a form, he can conduct a CSRF attack. As a result, you can prevent CSRF attacks by introducing an additional parameter with a value that is unknown to the attacker and can be confirmed by the server.

Need a Full Assessment?

Get help from professional hackers. Learn about our penetration test service now!

Request Pentest Service