Description
An issue was discovered in Joomla! before 3.9.16. Incorrect Access Control in the SQL fieldtype of com_fields allows access for non-superadmin users.
Remediation
References
Related Vulnerabilities
Django Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2011-0696)
PHP Other Vulnerability (CVE-2006-1990)
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-31545)
Oracle Database Server CVE-2007-5510 Vulnerability (CVE-2007-5510)
WordPress Plugin WooCommerce Arbitrary File Download (3.4.5)