Joomla! 1.5.x before 1.5.26 does not properly check permissions, which allows attackers to obtain sensitive "administrative back end information" via unknown vectors. NOTE: this might be a duplicate of CVE-2012-1611.Referenceshttp://www.openwall.com/lists/oss-security/2012/03/29/5http://developer.joomla.org/security/news/397-20120306-core-information-disclosure.html
