CVE-2021-26040 is a vulnerability in Joomla
Published on August 24, 2021

[20210801] - Core - Insufficient access control for com_media deletion endpoint
An issue was discovered in Joomla! 4.0.0. The media manager does not correctly check the user's permissions before executing a file deletion command.

Vendor Advisory NVD

Products Associated with CVE-2021-26040

Want to know whenever a new CVE is published for Joomla? stack.watch will email you.

Joomla

Affected Versions

Joomla! Project Joomla! CMS Version 4.0.0 is affected by CVE-2021-26040

Exploit Probability

EPSS

0.01%

Percentile

0.42%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2021-26040 is a vulnerability in JoomlaPublished on August 24, 2021

Products Associated with CVE-2021-26040

Affected Versions

Exploit Probability

CVE-2021-26040 is a vulnerability in Joomla
Published on August 24, 2021