CVE-2013-3057

Joomla! 2.5.x before 2.5.10 and 3.0.x before 3.0.4 allows remote authenticated users to bypass intended privilege requirements and list the privileges of arbitrary users via unspecified vectors.

Date published : 2013-05-03

http://developer.joomla.org/security/82-20130402-core-information-disclosure.html