Joomla! Improper Access Check Lets Low-Priv Users Edit Scheduler Task Types
CVE-2026-48900 Published on May 26, 2026

Joomla! Core - [20260516] - Incorrect Access Control in com_scheduler
An improper access check allowed low privileged users to edit the task types of existing scheduler tasks.

Vendor Advisory NVD

Weakness Type

What is an Authorization Vulnerability?

The software does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

CVE-2026-48900 has been classified to as an Authorization vulnerability or weakness.

Products Associated with CVE-2026-48900

Want to know whenever a new CVE is published for Joomla? stack.watch will email you.

Joomla

Affected Versions

Joomla! Project Joomla! CMS:

Version 4.1.0-5.4.5 is affected.
Version 6.0.0-6.1.0 is affected.

Joomla! Improper Access Check Lets Low-Priv Users Edit Scheduler Task TypesCVE-2026-48900 Published on May 26, 2026

Weakness Type

What is an Authorization Vulnerability?

Products Associated with CVE-2026-48900

Affected Versions

Joomla! Improper Access Check Lets Low-Priv Users Edit Scheduler Task Types
CVE-2026-48900 Published on May 26, 2026