Unrated severityNVD Advisory· Published Feb 23, 2010· Updated Jun 16, 2026
CVE-2010-0696
CVE-2010-0696
Description
Directory traversal vulnerability in includes/download.php in the JoomlaWorks AllVideos (Jw_allVideos) plugin 3.0 through 3.2 for Joomla! allows remote attackers to read arbitrary files via a ./../.../ (modified dot dot) in the file parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4cpe:2.3:a:joomlaworks:jw_allvideos:3.0:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:joomlaworks:jw_allvideos:3.0:*:*:*:*:*:*:*
- cpe:2.3:a:joomlaworks:jw_allvideos:3.1:*:*:*:*:*:*:*
- cpe:2.3:a:joomlaworks:jw_allvideos:3.2:*:*:*:*:*:*:*
- (no CPE)range: 3.0 - 3.2
Patches
Vulnerability mechanics
References
5- www.joomlaworks.gr/content/view/77/34/nvdPatchVendor Advisory
- www.securityfocus.com/bid/38238nvdExploit
- secunia.com/advisories/38587nvdVendor Advisory
- osvdb.org/62331nvd
- www.exploit-db.com/exploits/11447nvd
News mentions
0No linked articles in our index yet.