• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Joomla Vcard Access Information Disclosure Vulnerability

Joomla is prone to an information disclosure vulnerability. This issue is due to a failure in the application to properly secure sensitive and privileged information.

An attacker can exploit this issue to retrieve Vcard data. Such data consists of email addresses and other personal information. The information obtained may aid an attacker in harvesting email addresses for use in spam and malicious code attacks; other attacks are also possible.