Project: Joomla! SubProject: All Severity: Low Versions: 1.5.25 and all earlier 1.5.x versions Exploit type: Information Disclosure Reported Date: 2012-January-7 Fixed Date: 2012-March-27 Description Inadequate permission checking allows unauthorised viewing of administrative back end information. Affected Installs Joomla! versions 1.5.25 and all earlier 1.5.x versions Solution Upgrade to version 1.5.26 Reported by Cyrille Barthelemy Contact The JSST at the Joomla! Security Center.
Go here to see the original:
[20120306] – Core – Information Disclosure