Vulnerabilities (CVE)

Filtered by vendor Je Form Creator Subscribe
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2010-1217 2 Je Form Creator, Joomla 2 Je Form Creator, Joomla 2024-02-04 4.3 MEDIUM N/A
Directory traversal vulnerability in the JE Form Creator (com_jeformcr) component for Joomla!, when magic_quotes_gpc is disabled, allows remote attackers to read arbitrary files via directory traversal sequences in the view parameter to index.php. NOTE: the original researcher states that the affected product is JE Tooltip, not Form Creator; however, the exploit URL suggests that Form Creator is affected.