CVE-2010-1540

NUCLEI

MyBlog 3.0.329 - Path Traversal

Title source: llm

Description

Directory traversal vulnerability in index.php in the MyBlog (com_myblog) component 3.0.329 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the task parameter. NOTE: some of these details are obtained from third party information.

Exploits (1)

exploitdb WORKING POC VERIFIED

by DevilZ TM · textwebappsphp

https://www.exploit-db.com/exploits/11625

View Code ZIP pw:eip

Nuclei Templates (1)

Joomla! Component com_blog - Directory Traversal

MEDIUMby daffainfo

References (3)

[Vendor Advisory] http://secunia.com/advisories/38777

[Exploit] http://www.exploit-db.com/exploits/11625

[Exploit] http://www.securityfocus.com/bid/38530

Scores

EPSS 0.0469

EPSS Percentile 89.4%

Details

CWE

CWE-22

Status published

Products (1)

myblog/com_myblog 3.0.329

Published Apr 26, 2010

Tracked Since Feb 18, 2026