CVE-2026-48904 | Joomla CMS up to 5.4.5/6.1.0 com_users access control

A vulnerability categorized as critical has been discovered in Joomla CMS up to 5.4.5/6.1.0. This affects an unknown part of the component com_users. The manipulation results in improper access controls.

This vulnerability is known as CVE-2026-48904. It is possible to launch the attack remotely. No exploit is available.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More