Description

Joomla! 1.0.7 and earlier allows attackers to bypass intended access restrictions and gain certain privileges via certain attack vectors related to the (1) Weblink, (2) Polls, (3) Newsfeeds, (4) Weblinks, (5) Content, (6) Content Section, (7) Content Category, (8) Contact items, or (9) Contact Search, (10) Content Search, (11) Newsfeed Search, or (12) Weblink Search.

Remediation

References

CVE-2006-1048

Related Vulnerabilities

Atlassian Jira URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2019-20901)

WordPress Plugin CM Table Of Contents Cross-Site Scripting (1.0.7)

WordPress Plugin BackupBuddy Arbitrary File Download (8.7.4.1)

WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Privilege Escalation (2.1.11)

Oracle HTTP Server NULL Pointer Dereference Vulnerability (CVE-2020-1967)

Severity

Medium

Classification

CVE-2006-1048

Tags

Missing Update Known Vulnerabilities