Description
Joomla! 1.0.7 and earlier allows attackers to bypass intended access restrictions and gain certain privileges via certain attack vectors related to the (1) Weblink, (2) Polls, (3) Newsfeeds, (4) Weblinks, (5) Content, (6) Content Section, (7) Content Category, (8) Contact items, or (9) Contact Search, (10) Content Search, (11) Newsfeed Search, or (12) Weblink Search.
Remediation
References
Related Vulnerabilities
WordPress Plugin Advanced Custom Fields (ACF) PHP Object Injection (6.0.7)
WordPress Plugin Database Sync Cross-Site Scripting (0.4)
WordPress Plugin Sitemap Cross-Site Scripting (4.3)
ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-2047)
WordPress Plugin Coming soon and Maintenance mode Unspecified Vulnerability (3.5.4)