5
CVSSv2

CVE-2018-6008

Published: 29/01/2018 Updated: 15/02/2018
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 505
Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Vulnerability Summary

Arbitrary File Download exists in the Jtag Members Directory 5.3.7 component for Joomla! via the download_file parameter.

Affected Products

Vendor Product Versions
JoomlatagJtag Members Directory5.3.7

Exploits

# # # # # # Exploit Title: Joomla! Component Jtag Members Directory 537 - Arbitrary File Download # Dork: N/A # Date: 27012018 # Vendor Homepage: joomlatagcom/ # Software Link: extensionsjoomlaorg/extensions/extension/clients-a-communities/members-lists/jtag-members-directory/ # Version: 537 # Category: Webapps # Tested on: ...

Mailing Lists

Joomla! Jtag Members Directory component version 537 suffers from an arbitrary file download vulnerability ...