Description
An issue was discovered in Joomla! before 3.9.16. Incorrect Access Control in the SQL fieldtype of com_fields allows access for non-superadmin users.
Remediation
References
Related Vulnerabilities
WordPress Plugin All-In-One Security (AIOS)-Security and Firewall Cross-Site Scripting (3.9.7)
Grafana Other Vulnerability (CVE-2021-28147)
Apache HTTP Server Other Vulnerability (CVE-2021-30641)
WordPress Plugin GeoDirectory Location Manager Multiple SQL Injection Vulnerabilities (2.1.0.9)
Liferay Portal Incorrect Default Permissions Vulnerability (CVE-2022-41414)