CVE-2010-1056
NUCLEIJoomla! <1.0.1 - Path Traversal
Title source: llmDescription
Directory traversal vulnerability in the RokDownloads (com_rokdownloads) component before 1.0.1 for Joomla! allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the controller parameter to index.php.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by AtT4CKxT3rR0r1ST · textwebappsphp
https://www.exploit-db.com/exploits/11760
Nuclei Templates (1)
Joomla! Component com_rokdownloads - Local File Inclusion
MEDIUMby daffainfo
References (7)
Scores
EPSS
0.0400
EPSS Percentile
88.4%
Details
CWE
CWE-22
Status
published
Products (10)
rockettheme/com_rokdownloads
0.91 a
rockettheme/com_rokdownloads
0.92 a
rockettheme/com_rokdownloads
0.93 a
rockettheme/com_rokdownloads
0.94 a
rockettheme/com_rokdownloads
0.95 a
rockettheme/com_rokdownloads
0.96 a
rockettheme/com_rokdownloads
0.97 a
rockettheme/com_rokdownloads
0.98 a
rockettheme/com_rokdownloads
1.0 b1 (9 CPE variants)
rockettheme/com_rokdownloads
< 1.0
Published
Mar 23, 2010
Tracked Since
Feb 18, 2026