Limited Black Friday Offer:

Joomla! Component Deluxe Blog Factory 1.1.2 - Local File Inclusion CVE-2010-1955 Scanner

There is a local file inclusion vulnerability in Joomla! Component Deluxe Blog Factory 1.1.2, which allow remote attackers to read arbitrary files.

Short Info

Level

High

Type

Single Scan

Can be used by

Asset Owner

Estimated Time

10 sec

Scan only one

Url

Parent Category

Joomla! Component Deluxe Blog Factory 1.1.2 - Local File Inclusion CVE-2010-1955 Scanner Detail

Directory traversal vulnerability in the Deluxe Blog Factory (com_blogfactory) component 1.1.2 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.

http://packetstormsecurity.org/1004-exploits/joomladeluxeblog-lfi.txt
http://www.exploit-db.com/exploits/12238
http://www.securityfocus.com/bid/39508
https://exchange.xforce.ibmcloud.com/vulnerabilities/57846