In Joomla! before 3.8.2, a logic bug in com_fields exposed read-only information about a site's custom fields to unauthorized users.
References
Link | Resource |
---|---|
https://developer.joomla.org/security-centre/715-20171103-core-information-disclosure.html | Patch Vendor Advisory |
http://www.securityfocus.com/bid/101702 | Third Party Advisory VDB Entry |
http://www.securitytracker.com/id/1039757 | Third Party Advisory VDB Entry |
Configurations
Information
Published : 2017-11-09 18:29
Updated : 2017-11-28 09:15
NVD link : CVE-2017-16633
Mitre link : CVE-2017-16633
JSON object : View
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
Products Affected
joomla
- joomla\!