Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

Joomla Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-16633)

Description

In Joomla! before 3.8.2, a logic bug in com_fields exposed read-only information about a site's custom fields to unauthorized users.

Remediation

References

Related Vulnerabilities

WordPress Plugin Clever Addons for Elementor Multiple Cross-Site Scripting Vulnerabilities (2.0.15)

Atlassian Jira CVE-2021-39121 Vulnerability (CVE-2021-39121)

MySQL CVE-2012-1688 Vulnerability (CVE-2012-1688)

Django Missing Authorization Vulnerability (CVE-2026-4277)

WordPress Plugin Insert Pages Multiple Vulnerabilities (3.6.1)

Severity

Medium

Classification

CVE-2017-16633 CWE-200 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Tags

Missing Update Known Vulnerabilities