CVE-2021-26040

An issue was discovered in Joomla! 4.0.0. The media manager does not correctly check the user's permissions before executing a file deletion command.
Configurations

Configuration 1 (hide)

cpe:2.3:a:joomla:joomla\!:4.0.0:-:*:*:*:*:*:*

History

21 Nov 2024, 05:55

Type Values Removed Values Added
References () https://developer.joomla.org/security-centre/861-20210801-core-insufficient-access-control-for-com-media-deletion-endpoint - Vendor Advisory () https://developer.joomla.org/security-centre/861-20210801-core-insufficient-access-control-for-com-media-deletion-endpoint - Vendor Advisory

Information

Published : 2021-08-24 15:15

Updated : 2024-11-21 05:55


NVD link : CVE-2021-26040

Mitre link : CVE-2021-26040

CVE.ORG link : CVE-2021-26040


JSON object : View

Products Affected

joomla

  • joomla\!
CWE
CWE-863

Incorrect Authorization