An improper access check allows user to download vcard exports of com_contact contacts that are inaccessible.
Project Subscriptions
No data.
Advisories
No advisories yet.
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
Tue, 07 Jul 2026 19:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Tue, 07 Jul 2026 18:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | An improper access check allows user to download vcard exports of com_contact contacts that are inaccessible. | |
| Title | Joomla! Core - [20260702] - Incorrect Access Control in com_contact vcf download | |
| Weaknesses | CWE-284 | |
| References |
| |
| Metrics |
cvssV4_0
|
Projects
Sign in to view the affected projects.
Status: PUBLISHED
Assigner: Joomla
Published:
Updated: 2026-07-07T18:48:46.440Z
Reserved: 2026-05-26T16:47:13.550Z
Link: CVE-2026-48948
Updated: 2026-07-07T18:46:37.336Z
No data.
No data.
OpenCVE Enrichment
No data.
Weaknesses