PT-2026-56221 · Joomla · Joomla! Cms

Jorian Woltjer

·

Published

2026-07-07

·

Updated

2026-07-07

·

CVE-2026-48948

CVSS v4.0

6.4

Medium

VectorAV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:N/VA:N/SC:H/SI:H/SA:H
An improper access check allows user to download vcard exports of com contact contacts that are inaccessible.

Fix

Improper Access Control

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-48948

Affected Products

Joomla! Cms