Description
Joomla! Core is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions by escalating their privileges due to a programming error. Joomla! Core versions 1.6.x ranging from 1.6.0 and up to and including 1.6.6 are vulnerable.
Remediation
Update to Joomla! Core version 2.5.3 or latest
References
http://jeffchannell.com/Joomla/joomla-161725-privilege-escalation-vulnerability.html
https://www.exploit-db.com/exploits/41156/
https://developer.joomla.org/security-centre/395-20120303-core-privilege-escalation.html
Related Vulnerabilities
WordPress Plugin Import XML and RSS Feeds Arbitrary File Upload (2.1.5)
Dot CMS Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2017-3189)
WordPress Plugin Form Manager Remote Command Execution (1.7.2)
Drupal CVE-2009-1576 Vulnerability (CVE-2009-1576)
WordPress Plugin BP Group Documents Multiple Vulnerabilities (1.2.1)