CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2009-3053

Directory traversal vulnerability in the Agora (com_agora) component 3.0.0b for Joomla! allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the action parameter to the avatars page, reachable through index.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.067

EPSS Ranking 90.7%

CVSS Severity

CVSS v2 Score 6.8

References

http://www.exploit-db.com/exploits/9564
http://www.securityfocus.com/bid/36207
https://exchange.xforce.ibmcloud.com/vulnerabilities/52964
http://www.exploit-db.com/exploits/9564
http://www.securityfocus.com/bid/36207
https://exchange.xforce.ibmcloud.com/vulnerabilities/52964

Products affected by CVE-2009-3053

Joomla » Joomla » Version: Any

cpe:2.3:a:joomla:joomla:*
Jvitals » Com Agora » Version: 3.0.0b

cpe:2.3:a:jvitals:com_agora:3.0.0b

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-3053

Products

Pricing

Contact Us