Description

The com_content component in Joomla! 3.x before 3.4.5 does not properly check ACLs, which allows remote attackers to obtain sensitive information via unspecified vectors.

Remediation

References

CVE-2015-7899

Related Vulnerabilities

OpenSSL Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2023-2650)

WordPress Plugin Request a Quote Cross-Site Scripting (2.3.4)

WordPress Plugin CP Contact Form with PayPal Cross-Site Scripting (1.2.98)

WordPress Plugin WordPress Simple Shop Cross-Site Scripting (1.2)

WordPress Plugin Affiliate Press Multiple Cross-Site Scripting Vulnerabilities (0.3.8)

Severity

Medium

Classification

CVE-2015-7899 CWE-284

Tags

Missing Update Known Vulnerabilities