Vulnerabilities (CVE)

Filtered by vendor Thefactory Subscribe
Filtered by product Com Gadgetfactory
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2010-1956 2 Joomla, Thefactory 2 Joomla\!, Com Gadgetfactory 2024-11-21 7.5 HIGH N/A
Directory traversal vulnerability in the Gadget Factory (com_gadgetfactory) component 1.0.0 and 1.5.0 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php. NOTE: some of these details are obtained from third party information.