← volver
CVE-2019-10945

CVE-2019-10945

EPSS 38.0%
An issue was discovered in Joomla! before 3.9.5. The Media Manager component does not properly sanitize the folder parameter, allowing attackers to act outside the media manager root directory.
Productos afectados
n/a · n/a
PoCs públicas encontradas6
githubgithub.com/dpgg101/CVE-2019-1094529githubgithub.com/Snizi/CVE-2019-109450githubgithub.com/tayW84/CVE-2019-10945----Python30cve_referencepacketstormsecurity.com/files/152515/Joomla-3.9.4-Arbitrary-File-Deletion-Directory-Traversal.htmlno verificadocve_referencewww.exploit-db.com/exploits/46710/no verificadoexploitdbwww.exploit-db.com/exploits/46710no verificado
⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://packetstormsecurity.com/files/152515/Joomla-3.9.4-Arbitrary-File-Deletion-Directory-Traversal.htmlhttps://developer.joomla.org/security-centre/777-20190401-core-directory-traversal-in-com-mediahttps://www.exploit-db.com/exploits/46710/