Description
In Joomla! before 3.8.2, a logic bug in com_fields exposed read-only information about a site's custom fields to unauthorized users.
Remediation
References
Related Vulnerabilities
WordPress Plugin Theme My Login Local File Inclusion (6.3.9)
Joomla! Core 1.5.x Information Disclosure (1.5.0 - 1.5.14)
WordPress Plugin MX Time Zone Clocks Cross-Site Scripting (3.4)
WordPress Plugin Parsian Bank Woocommerce Cross-Site Scripting (1.0)
WordPress Plugin WordPress Shortcodes-Shortcodes Ultimate Cross-Site Scripting (5.10.1)