CVE-2006-1026
CVE-2006-1026 affects JFacets before 0.2. The issue allows remote attackers to escalate privileges to any account by issuing a GET request with a modified account profileID. The description directly states privilege escalation via crafted request; no exploitation specifics are provided beyond tha...