Jfacets · Jfacets · CVE-2006-1026
**Name of the Vulnerable Software and Affected Versions**
JFacets versions prior to 0.2
**Description**
The issue allows remote attackers to gain privileges as any account. This can be achieved via a GET request with a modified `profileID`.
**Recommendations**
For versions prior to 0.2, update to version 0.2 or later to resolve the issue.