Description
An issue was discovered in Joomla! Core before 3.8.8. Inadequate checks allowed users to modify the access levels of user groups with higher permissions.
Remediation
References
Related Vulnerabilities
WordPress Plugin Sell Photo Cross-Site Scripting (1.0.5)
PHP Use After Free Vulnerability (CVE-2016-5771)
Atlassian Jira Uncontrolled Search Path Element Vulnerability (CVE-2019-20419)
WordPress Plugin WP Statistics Cross-Site Scripting (12.6.5)
MySQL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-8286)