[20120601] - Core - Privilege Escalation

  • Project: Joomla!
  • SubProject: All
  • Severity: Medium High
  • Versions: 2.5.4 and all earlier 2.5.x versions
  • Exploit type: Privilege Escalation
  • Reported Date: 2012-April-29
  • Fixed Date: 2012-June-18


Inadequate checking leads to possible user privilege escalation.

Affected Installs

Joomla! versions 2.5.4 and all earlier 2.5.x versions


Upgrade to version 2.5.5

Reported by Nils Rückmann


The JSST at the Joomla! Security Center.

Source: http://feeds.joomla.org/~r/JoomlaSecurityNews/~3/I2o1kbJKIVQ/470-20120601-core-privilege-escalation.html