Unrated severityNVD Advisory· Published Jun 1, 2010· Updated Jun 16, 2026
CVE-2010-2129
CVE-2010-2129
Description
Directory traversal vulnerability in the JE Ajax Event Calendar (com_jeajaxeventcalendar) component 1.0.1 and 1.0.3 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the view parameter to index.php. NOTE: some of these details are obtained from third party information.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:harmistechnology:com_jeajaxeventcalendar:1.0.1:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:harmistechnology:com_jeajaxeventcalendar:1.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:harmistechnology:com_jeajaxeventcalendar:1.0.3:*:*:*:*:*:*:*
- Range: 1.0.1, 1.0.3
Patches
Vulnerability mechanics
References
7- packetstormsecurity.org/1005-exploits/joomlaajaxec-lfi.txtnvdExploit
- www.exploit-db.com/exploits/12598nvdExploit
- www.osvdb.org/64704nvdExploit
- www.securityfocus.com/bid/40179nvdExploit
- www.xenuser.org/2010/05/14/joomla-component-je-ajax-event-calendar-local-file-inclusion-vulnerability/nvdExploit
- secunia.com/advisories/39836nvdVendor Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/58602nvd
News mentions
0No linked articles in our index yet.