N/A

Directory traversal vulnerability in the Picasa2Gallery (com_picasa2gallery) component 1.2.8 and earlier for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php.

N/A

N/A

Joomla!组件Picasa2Gallery (com_picasa2gallery)目录遍历漏洞

Joomla!是一款开放源码的内容管理系统(CMS)。 Joomla! 的Picasa2Gallery (com_picasa2gallery) 组件 1.2.8 以及早期版本中存在目录遍历漏洞。远程攻击者可以借助index.php的controller参数中的" .."符读取任意的文件，也可能导致其他未明影响。

N/A

N/A