Unrated severityNVD Advisory· Published Sep 3, 2009· Updated Apr 23, 2026

CVE-2009-3053

Description

Directory traversal vulnerability in the Agora (com_agora) component 3.0.0b for Joomla! allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the action parameter to the avatars page, reachable through index.php.

Affected products

Jvitals/Com Agora
cpe:2.3:a:jvitals:com_agora:3.0.0b:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/36207nvdExploit
www.exploit-db.com/exploits/9564nvd
exchange.xforce.ibmcloud.com/vulnerabilities/52964nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000