CVE-2015-4071

2017-08-18T14:29:00
ID CVE-2015-4071
Type cve
Reporter NVD
Modified 2017-10-05T11:39:12

Description

The Helpdesk Pro Plugin before 1.4.0 for Joomla! allows remote attackers to read the support tickets of arbitrary users via obtaining the target ticketId, and navigating to http://{target}/component/helpdeskpro/?view=ticket&id={ticketId}.