Description
Joomla! 2.5.x before 2.5.10 and 3.0.x before 3.0.4 allows remote authenticated users to bypass intended privilege requirements and delete the private messages of arbitrary users via unspecified vectors.
Remediation
References
Related Vulnerabilities
EspoCRM Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2022-38843)
Perl Other Vulnerability (CVE-2011-0761)
WordPress 3.8.4 Multiple Vulnerabilities (3.8 - 3.8.4)
Oracle Application Server Other Vulnerability (CVE-2001-1372)
Joomla Generation of Error Message Containing Sensitive Information Vulnerability (CVE-2022-23794)