Description

The com_contenthistory component in Joomla! 3.2 before 3.4.5 does not properly check ACLs, which allows remote attackers to obtain sensitive information via unspecified vectors.

Remediation

References

CVE-2015-7859

Related Vulnerabilities

WordPress Plugin Nextend Google Connect Cross-Site Scripting (1.5.2)

MySQL CVE-2012-3149 Vulnerability (CVE-2012-3149)

WordPress Plugin Improved user search in backend Cross-Site Request Forgery (1.2.4)

Oracle JRE CVE-2013-2450 Vulnerability (CVE-2013-2450)

phpMyAdmin Cleartext Storage of Sensitive Information Vulnerability (CVE-2008-1567)

Severity

Medium

Classification

CVE-2015-7859 CWE-200

Tags

Missing Update Known Vulnerabilities