CVE-2010-2680

NUCLEI

Joomla! - Path Traversal

Title source: llm

Description

Directory traversal vulnerability in the JExtensions JE Section/Property Finder (jesectionfinder) component for Joomla! allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the view parameter to index.php.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Sid3^effects · textwebappsphp

https://www.exploit-db.com/exploits/14064

View Code ZIP pw:eip

Nuclei Templates (1)

Joomla! Component jesectionfinder - Local File Inclusion

MEDIUMby daffainfo

References (4)

[Exploit] http://packetstormsecurity.org/1006-exploits/joomlajesectionfinder-lfi.txt

[Exploit] http://www.exploit-db.com/exploits/14064

[Exploit] http://www.securityfocus.com/bid/41163

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/59796

Scores

EPSS 0.0201

EPSS Percentile 83.8%

Details

CWE

CWE-22

Status published

Products (1)

harmistechnology/com_jesectionfinder

Published Jul 12, 2010

Tracked Since Feb 18, 2026