Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

Joomla CVE-2026-48900 Vulnerability (CVE-2026-48900)

Description

An improper access check allowed low privileged users to edit the task types of existing scheduler tasks.

Remediation

References

Related Vulnerabilities

MySQL CVE-2019-2950 Vulnerability (CVE-2019-2950)

WordPress Plugin Ivory Search-WordPress Search Cross-Site Scripting (4.6)

PHP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2026-6735)

WordPress Plugin Premium SEO Pack Security Bypass (1.9.1.3)

Moodle Improper Access Control Vulnerability (CVE-2025-62395)

Severity

Medium

Classification

CVE-2026-48900 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Tags

Missing Update Known Vulnerabilities