Description
An issue was discovered in com_fields in Joomla! Core before 3.8.8. Inadequate filtering allows users authorised to create custom fields to manipulate the filtering options and inject an unvalidated option.
Remediation
References
Related Vulnerabilities
Joomla! Core 1.0.x Multiple Vulnerabilities (1.0.0 - 1.0.12)
WordPress Plugin WP DSGVO Tools (GDPR) Security Bypass (3.1.23)
WordPress Plugin WooCommerce Stock Manager Security Bypass (1.0.7)
Joomla! Core PHP Object Injection (2.5.4 - 3.8.12)
WordPress Plugin Gallery-Flagallery Photo Portfolio SQL Injection (2.55)