Analysis and contextual insights are available on OpenCVE Cloud.
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
No advisories yet.
Tue, 07 Jul 2026 19:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Tue, 07 Jul 2026 18:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | An improper access check allows unauthorized users to create custom fields via webservices endpoints. | |
| Title | Joomla! Core - [20260712] - Incorrect Access Control in com_fields webservice endpoints | |
| Weaknesses | CWE-284 | |
| References |
| |
| Metrics |
cvssV4_0
|
Subscriptions
No data.
Status: PUBLISHED
Assigner: Joomla
Published:
Updated: 2026-07-07T18:39:28.132Z
Reserved: 2026-05-26T16:47:13.550Z
Link: CVE-2026-48958
Updated: 2026-07-07T18:39:16.329Z
No data.
No data.
OpenCVE Enrichment
No data.