Description

Joomla! 1.0.7 and earlier allows attackers to bypass intended access restrictions and gain certain privileges via certain attack vectors related to the (1) Weblink, (2) Polls, (3) Newsfeeds, (4) Weblinks, (5) Content, (6) Content Section, (7) Content Category, (8) Contact items, or (9) Contact Search, (10) Content Search, (11) Newsfeed Search, or (12) Weblink Search.

Remediation

References

CVE-2006-1048

Related Vulnerabilities

Atlassian Jira Uncontrolled Search Path Element Vulnerability (CVE-2019-20400)

WordPress Plugin WordPress Shortcodes-Shortcodes Ultimate Directory Traversal (4.9.9)

WordPress Plugin Download Theme Arbitrary Directory Download (1.0.2)

Atlassian Jira Incorrect Authorization Vulnerability (CVE-2018-20826)

Grafana Cleartext Storage of Sensitive Information Vulnerability (CVE-2022-26148)

Severity

Medium

Classification

CVE-2006-1048

Tags

Missing Update Known Vulnerabilities