WEB APPLICATION VULNERABILITIES Standard & Premium

Joomla Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-16633)

Description

In Joomla! before 3.8.2, a logic bug in com_fields exposed read-only information about a site's custom fields to unauthorized users.

Remediation

References

Related Vulnerabilities

WordPress Plugin WP24 Domain Check Cross-Site Scripting (1.6.2)

MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-2242)

WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-2202)

WordPress Plugin NotificationX-WooCommerce Sales Notification Popup, Custom & Live Sales Notification, FOMO, Social Proof, Announcement Banner & Sticky Notification Bar SQL Injection (2.8.2)

Oracle Database Server CVE-2019-2484 Vulnerability (CVE-2019-2484)

Severity

Medium

Classification

CVE-2017-16633 CWE-200 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Tags

Missing Update Known Vulnerabilities