[20120601] - Core - Privilege Escalation

  • Project: Joomla!
  • SubProject: All
  • Severity: Medium High
  • Versions: 2.5.4 and all earlier 2.5.x versions
  • Exploit type: Privilege Escalation
  • Reported Date: 2012-April-29
  • Fixed Date: 2012-June-18

Description

Inadequate checking leads to possible user privilege escalation.

Affected Installs

Joomla! versions 2.5.4 and all earlier 2.5.x versions

Solution

Upgrade to version 2.5.5

Reported by Nils Rückmann

Contact

The JSST at the Joomla! Security Center.

Source: http://feeds.joomla.org/~r/JoomlaSecurityNews/~3/I2o1kbJKIVQ/470-20120601-core-privilege-escalation.html