CVE-2010-0157

Name of the Vulnerable Software and Affected Versions Joomla! component com biblestudy version 6.1

Description A directory traversal issue exists in the com biblestudy component for Joomla!, allowing remote attackers to include and execute arbitrary local files. This is achieved by using a .. (dot dot) in the controller parameter within a studieslist action to the "index.php" endpoint.

Recommendations For version 6.1, consider restricting access to the vulnerable component until a patch is available. As a temporary workaround, avoid using the controller parameter in the studieslist action to the "index.php" endpoint.