Joomla Permissions Privileges and Access Controls Vulnerability - CVE-2006-4476 - Vulnerability Database

Joomla Permissions Privileges and Access Controls Vulnerability - CVE-2006-4476

High
Reference: CVE-2006-4476
Title: Joomla Permissions Privileges and Access Controls Vulnerability
Overview:

Multiple unspecified vulnerabilities in Joomla before 1.0.11 related to quotInjection Flawsquot allow attackers to have an unknown impact via (1) globals.php which uses include_once() instead of require() (2) the options variable (3) Admin Upload Image (4) -gtload() (5) content submissions when frontpage is selected (6) the mosPageNav constructor (7) saveOrder functions (8) the absence of quotexploit blocking rulesquot in htaccess and (9) the ACL.