QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2025-27445

Back to search

CVE-2025-27445

Published: Jun 5, 2025

Modified: Jun 19, 2025

PUBLISHED

Description

A path traversal vulnerability in RSFirewall component 2.9.7 - 3.1.5 for Joomla was discovered. This vulnerability allows authenticated users to read arbitrary files outside the Joomla root directory. The flaw is caused by insufficient sanitization of user-supplied input in file path parameters, allowing attackers to exploit directory traversal sequences (e.g., ../) to access sensitive files

VendorProductVersions

rsjoomla.com

RSFirewall component for Joomla

affected
2.9.7-3.1.5

Weaknesses (CWE)

CWE-35

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now