Search criteria
1 vulnerability by ijoomla.com
CVE-2022-23802 (GCVE-0-2022-23802)
Vulnerability from cvelistv5 – Published: 2022-05-06 17:55 – Updated: 2026-02-25 05:06
VLAI
Title
Extension - Insecure Permissions within Joomla Guru extensions
Summary
Joomla Guru extension 5.2.5 is affected by: Insecure Permissions. The impact is: obtain sensitive information (remote). The component is: Access to private information and components, possibility to view other users' information. Information disclosure Access to private information and components, possibility to view other users' information.
Severity
No CVSS data available.
CWE
- Insecure Permissions
Assigner
References
1 reference
| URL | Tags |
|---|---|
| https://guru.ijoomla.com/changelog | x_refsource_MISCvendor-advisory |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| ijoomla.com | Guru |
Affected:
5.2.5
|
Date Public
2022-05-06 00:00
Credits
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T03:51:45.989Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"vendor-advisory",
"x_transferred"
],
"url": "https://guru.ijoomla.com/changelog"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Guru",
"vendor": "ijoomla.com",
"versions": [
{
"status": "affected",
"version": "5.2.5"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Rafael Garc\u00eda L\u00e1zaro"
}
],
"datePublic": "2022-05-06T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Joomla Guru extension 5.2.5 is affected by: Insecure Permissions. The impact is: obtain sensitive information (remote). The component is: Access to private information and components, possibility to view other users\u0027 information. Information disclosure Access to private information and components, possibility to view other users\u0027 information."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Insecure Permissions",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-02-25T05:06:03.638Z",
"orgId": "6ff30186-7fb7-4ad9-be33-533e7b05e586",
"shortName": "Joomla"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"vendor-advisory"
],
"url": "https://guru.ijoomla.com/changelog"
}
],
"title": "Extension - Insecure Permissions within Joomla Guru extensions",
"x_generator": {
"engine": "cvelib 1.8.0"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security@joomla.org",
"DATE_PUBLIC": "2022-05-06T18:00:00",
"ID": "CVE-2022-23802",
"STATE": "PUBLIC",
"TITLE": "Extension - Insecure Permissions within Joomla Guru extensions"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Guru",
"version": {
"version_data": [
{
"version_value": "5.2.5"
}
]
}
}
]
},
"vendor_name": "ijoomla.com"
}
]
}
},
"credit": "Rafael Garc\u00eda L\u00e1zaro",
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Joomla Guru extension 5.2.5 is affected by: Insecure Permissions. The impact is: obtain sensitive information (remote). The component is: Access to private information and components, possibility to view other users\u0027 information. Information disclosure Access to private information and components, possibility to view other users\u0027 information."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Insecure Permissions"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://guru.ijoomla.com/changelog",
"refsource": "MISC",
"url": "https://guru.ijoomla.com/changelog"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "6ff30186-7fb7-4ad9-be33-533e7b05e586",
"assignerShortName": "Joomla",
"cveId": "CVE-2022-23802",
"datePublished": "2022-05-06T17:55:11.006Z",
"dateReserved": "2022-01-20T00:00:00.000Z",
"dateUpdated": "2026-02-25T05:06:03.638Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}