Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

46 matches found

RedhatCVE
RedhatCVEadded 2026/06/05 7:26 p.m.8 views

CVE-2026-48899

An improper access check allows privilege escalation through the comusers batch task...

9.8CVSS5.4AI score0.00234EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/06/05 7:23 p.m.6 views

CVE-2026-35220

Lack of CSRF token validation lead to a CSRF attack vector in the admin activation endpoint of comusers...

4.6CVSS5.4AI score0.00104EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/06/05 7:13 p.m.5 views

CVE-2026-48898

An improper access check allows privilege escalation through the comusers batch task...

9.8CVSS5.4AI score0.00268EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/06/05 7:13 p.m.7 views

CVE-2026-48904

An improper access check allows privelege escalation through the comusers group editing webservice endpoint...

9.8CVSS5.4AI score0.00292EPSS
Exploits0References1
OSV
OSVadded 2026/05/27 8:47 a.m.6 views

BIT-JOOMLA-2026-48904 Joomla! Core - [20260514] - Privilege escalation through com_users webservice endpoints

An improper access check allows privelege escalation through the comusers group editing webservice endpoint...

9.8CVSS5.8AI score0.00292EPSS
Exploits0References2
NVD
NVDadded 2026/05/26 5:16 p.m.13 views

CVE-2026-48904

An improper access check allows privelege escalation through the comusers group editing webservice endpoint...

9.8CVSS0.00292EPSS
Exploits0References1
NVD
NVDadded 2026/05/26 5:16 p.m.13 views

CVE-2026-48898

An improper access check allows privilege escalation through the comusers batch task...

9.8CVSS0.00268EPSS
Exploits0References1
NVD
NVDadded 2026/05/26 5:16 p.m.17 views

CVE-2026-48899

An improper access check allows privilege escalation through the comusers batch task...

9.8CVSS0.00234EPSS
Exploits0References1
CVE
CVEadded 2026/05/26 4:45 p.m.21 views

CVE-2026-35220

This CVE (CVE-2026-35220) concerns Joomla! core (com_users) with an admin activation endpoint lacking CSRF token validation. The underlying issue enables a CSRF attack vector against the activation flow, as indicated by the description from multiple sources. The CVSS assessment (4.6, MEDIUM) refl...

4.6CVSS5.8AI score0.00104EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2026/05/26 4:44 p.m.9 views

CVE-2026-48899 Joomla! Core - [20260515] - Incorrect Access Control in sample data plugins

An improper access check allows privilege escalation through the comusers batch task...

5.3CVSS5.8AI score0.00234EPSS
Exploits0References1
EUVD
EUVDadded 2026/05/26 4:44 p.m.12 views

EUVD-2026-31880

An improper access check allows privilege escalation through the comusers batch task...

9.8CVSS5.8AI score0.00234EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/05/26 4:44 p.m.38 views

CVE-2026-48899 Joomla! Core - [20260515] - Incorrect Access Control in sample data plugins

An improper access check allows privilege escalation through the comusers batch task...

5.3CVSS0.00234EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/05/26 4:44 p.m.8 views

CVE-2026-48899

An improper access check allows privilege escalation through the comusers batch task...

5.3CVSS5.8AI score0.00234EPSS
Exploits0References2Affected Software1
EUVD
EUVDadded 2026/05/26 4:43 p.m.10 views

EUVD-2026-31875

An improper access check allows privelege escalation through the comusers group editing webservice endpoint...

9.8CVSS5.8AI score0.00292EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/05/26 4:43 p.m.6 views

CVE-2026-48904

An improper access check allows privelege escalation through the comusers group editing webservice endpoint...

8.2CVSS5.8AI score0.00292EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2026/05/26 4:43 p.m.64 views

CVE-2026-48904

CVE-2026-48904 affects Joomla! Core via the com_users webservice endpoints. An improper access check enables privilege escalation from group editing operations, leading to potential HIGH/CRITICAL impact per cited CVSS vectors (C/H, I/H, A/H). The public material specifies the affected component (...

9.8CVSS5.8AI score0.00292EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2026/05/26 4:43 p.m.10 views

CVE-2026-48904 Joomla! Core - [20260514] - Privilege escalation through com_users webservice endpoints

An improper access check allows privelege escalation through the comusers group editing webservice endpoint...

8.2CVSS5.8AI score0.00292EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/05/26 4:43 p.m.38 views

CVE-2026-48904 Joomla! Core - [20260514] - Privilege escalation through com_users webservice endpoints

An improper access check allows privelege escalation through the comusers group editing webservice endpoint...

8.2CVSS0.00292EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/05/26 4:42 p.m.40 views

CVE-2026-48898 Joomla! Core - [20260513] - Privilege escalation through com_users batch task

An improper access check allows privilege escalation through the comusers batch task...

8.2CVSS0.00268EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/05/26 4:42 p.m.4 views

CVE-2026-48898

An improper access check allows privilege escalation through the comusers batch task...

8.2CVSS5.8AI score0.00268EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder