Description
An improper access check allows unauthorized users to create custom fields via webservices endpoints.
No analysis available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
No advisories yet.
References
History
Tue, 07 Jul 2026 19:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Tue, 07 Jul 2026 18:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | An improper access check allows unauthorized users to create custom fields via webservices endpoints. | |
| Title | Joomla! Core - [20260712] - Incorrect Access Control in com_fields webservice endpoints | |
| Weaknesses | CWE-284 | |
| References |
| |
| Metrics |
cvssV4_0
|
Subscriptions
No data.
Status: PUBLISHED
Assigner: Joomla
Published:
Updated: 2026-07-07T18:39:28.132Z
Reserved: 2026-05-26T16:47:13.550Z
Link: CVE-2026-48958
Updated: 2026-07-07T18:39:16.329Z
No data.
No data.
OpenCVE Enrichment
No data.
Weaknesses
-
CWE-284
Improper Access Control