CVE-2009-3053 Information

Description

Directory traversal vulnerability in the Agora (com_agora) component 3.0.0b for Joomla! allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the action parameter to the avatars page reachable through index.php.

Reference

http://www.exploit-db.com/exploits/9564 http://www.securityfocus.com/bid/36207 https://exchange.xforce.ibmcloud.com/vulnerabilities/52964