Description

Joomla! 2.5.x before 2.5.10 and 3.0.x before 3.0.4 allows remote authenticated users to bypass intended privilege requirements and list the privileges of arbitrary users via unspecified vectors.

Remediation

References

CVE-2013-3057

Related Vulnerabilities

ownCloud Exposure of Resource to Wrong Sphere Vulnerability (CVE-2020-36252)

WordPress Plugin Nextend Facebook Connect Cross-Site Scripting (1.5.5)

WordPress Plugin twitterDash Cross-Site Request Forgery (2.1)

WordPress Plugin InstaWP Connect-1-click WP Staging & Migration Security Bypass (0.1.0.44)

TCExam Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-20111)

Severity

Medium

Classification

CVE-2013-3057 CWE-264

Tags

Missing Update Known Vulnerabilities