Description
Joomla! 1.5.x before 1.5.26 does not properly check permissions, which allows attackers to obtain sensitive "administrative back end information" via unknown vectors. NOTE: this might be a duplicate of CVE-2012-1611.
Remediation
References
Related Vulnerabilities
Drupal Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-5652)
WordPress Plugin Akeeba Backup CORE for WordPress Arbitrary File Upload (1.1.3)
WordPress Plugin Music Store Cross-Site Scripting (1.0.52)
WordPress Plugin Connections Business Directory Cross-Site Scripting (10.4.2)