Description
An issue was discovered in templates/beez3/html/com_content/article/default.php in Joomla! before 3.6.5. Inadequate permissions checks in the Beez3 layout override of the com_content article view allow users to view articles that should not be publicly accessible, as demonstrated by an index.php?option=com_content&view=article&id=1&template=beez3 request.
Remediation
References
Related Vulnerabilities
WordPress Plugin Product Addons & Fields for WooCommerce Cross-Site Scripting (18.3)
Oracle JRE CVE-2018-2634 Vulnerability (CVE-2018-2634)
WordPress Plugin Shantz WordPress QOTD Cross-Site Request Forgery (1.2.2)
Squid CVE-2024-45802 Vulnerability (CVE-2024-45802)
WordPress Plugin DSGVO All in one for WP Cross-Site Scripting (3.9)