Description
An issue was discovered in Joomla! through 3.9.19. Internal read-only fields in the User table class could be modified by users.
Remediation
References
Related Vulnerabilities
IBM WebSEAL Missing Authorization Vulnerability (CVE-2019-4158)
CrushFTP Server Deserialization of Untrusted Data Vulnerability (CVE-2017-14035)
WordPress Plugin WP Google Review Slider Cross-Site Scripting (11.5)
Python Improper Privilege Management Vulnerability (CVE-2020-29396)
WordPress Plugin MailUp newsletter sign-up form Security Bypass (1.3.2)