Published: 26/04/2010 Updated: 27/04/2010

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Directory traversal vulnerability in the givesight PowerMail Pro (com_powermail) component 1.5.3 for Joomla! allows remote malicious users to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php.

Vulnerable Product	Search on Vulmon	Subscribe to Product
givesight com_powermail 1.53

Potential security vulnerabilities have been identified with certain HP Photosmart printers These vulnerabilities could be exploited remotely for cross site scripting (XSS) or to gain unauthorized access to data or printer configuration information ...

=============================================================================================================== [o] Joomla Component PowerMail Pro Local File Inclusion Vulnerability Software : com_powermail version 153 Vendor : wwwgivesightorg Author : AntiSecurity [ Vrs-hCk NoGe OoN_BoY Paman zxvf s4va ] ...

CWE-22 http://packetstormsecurity.org/1004-exploits/joomlapowermail-lfi.txt http://www.securityfocus.com/bid/39348 http://secunia.com/advisories/39226 http://www.exploit-db.com/exploits/12118 https://nvd.nist.gov https://www.exploit-db.com/exploits/12118/https://support.hp.com//us-en/document/c02267197

CVE-2010-1532

Vulnerability Summary

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect