CVE-2015-4074

Published: 2017-09-20T16:29Z

Last Modified: 2024-11-21T02:30Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Directory traversal vulnerability in the Helpdesk Pro plugin before 1.4.0 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the filename parameter in a ticket.download_attachment task. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt