VYPR
Unrated severityNVD Advisory· Published Aug 24, 2021· Updated Feb 25, 2026

[20210801] - Core - Insufficient access control for com_media deletion endpoint

CVE-2021-26040

Description

An issue was discovered in Joomla! 4.0.0. The media manager does not correctly check the user's permissions before executing a file deletion command.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.