Description
Joomla! Core is prone to a session hijacking vulnerability. Exploiting this issue may allow attackers to access another user's session, thus giving them the opportunity to do anything the affected user is authorized to do. Joomla! Core versions 1.5.x ranging from 1.5.0 and up to and including 1.5.8 are vulnerable.
Remediation
Update to Joomla! Core version 1.5.9 or latest
References
http://int21.de/cve/CVE-2008-4122-joomla.html
https://developer.joomla.org/security-centre/287-20090101-core-jsession-ssl-session-disclosure.html
Related Vulnerabilities
Oracle Database Server CVE-2006-0259 Vulnerability (CVE-2006-0259)
WordPress Plugin Coming Soon & Maintenance Mode Page Cross-Site Request Forgery (1.57)
MySQL CVE-2023-21880 Vulnerability (CVE-2023-21880)
Moodle Incorrect Authorization Vulnerability (CVE-2021-20283)
WordPress Plugin WP-Recall-Registration, Profile, Commerce & More Security Bypass (16.26.6)