Joomla Preventive & Reservation Component "controller" File Inclusion Vulnerability

SECUNIA ADVISORY ID:
SA39285

VERIFY ADVISORY:
http://secunia.com/advisories/39285/

DESCRIPTION:
A vulnerability has been discovered in the Preventive & Reservation
component for Joomla, which can be exploited by malicious people to
disclose potentially sensitive information.

Input passed to the "controller" parameter in index.php (when
"option" is set to "com_preventive") is not properly verified before
being used to include files. This can be exploited to include
arbitrary files from local resources via directory traversal attacks
and URL-encoded NULL bytes.

The vulnerability is confirmed in version 1.0.5. Other versions may
also be affected.

SOLUTION:
Edit the source code to ensure that input is properly verified.

PROVIDED AND/OR DISCOVERED BY:
AntiSecurity

ORIGINAL ADVISORY:
http://www.exploit-db.com/exploits/12147