SECUNIA ADVISORY ID:
Customer Area (Credentials Required)
A vulnerability has been reported in the DOCman component for Joomla,
which can be exploited by malicious users to disclose potentially
The vulnerability is caused due to improper handling of the
document's metadata. This can be exploited to disclose the contents
of arbitrary files by changing certain metadata fields of a
Successful exploitation requires the "upload" and "edit"
The vulnerability is reported in version 1.3.x, 1.4.0, and 1.5.x up
Update to version 1.4.1 and 1.5.8.
PROVIDED AND/OR DISCOVERED BY:
Reported by the vendor.