Description

The com_content component in Joomla! 3.x before 3.4.5 does not properly check ACLs, which allows remote attackers to obtain sensitive information via unspecified vectors.

Remediation

References

CVE-2015-7899

Related Vulnerabilities

WordPress Plugin BuddyBoss Media Cross-Site Scripting (3.0.3)

WordPress Plugin 10Web Map Builder for Google Maps SQL Injection (1.0.72)

WordPress Plugin User Role by BestWebSoft Cross-Site Scripting (1.4.1)

WordPress Plugin Gift Certificate Creator Cross-Site Scripting (1.0.0)

WordPress Plugin Drug Search Cross-Site Scripting (1.0.0)

Severity

Medium

Classification

CVE-2015-7899 CWE-284

Tags

Missing Update Known Vulnerabilities