Description
Joomla! 1.0.7 and earlier allows attackers to bypass intended access restrictions and gain certain privileges via certain attack vectors related to the (1) Weblink, (2) Polls, (3) Newsfeeds, (4) Weblinks, (5) Content, (6) Content Section, (7) Content Category, (8) Contact items, or (9) Contact Search, (10) Content Search, (11) Newsfeed Search, or (12) Weblink Search.
Remediation
References
Related Vulnerabilities
Atlassian Jira Uncontrolled Search Path Element Vulnerability (CVE-2019-20400)
WordPress Plugin WordPress Shortcodes-Shortcodes Ultimate Directory Traversal (4.9.9)
WordPress Plugin Download Theme Arbitrary Directory Download (1.0.2)
Atlassian Jira Incorrect Authorization Vulnerability (CVE-2018-20826)
Grafana Cleartext Storage of Sensitive Information Vulnerability (CVE-2022-26148)