CVE-2026-48901

Published: Mag 26, 2026 Last Modified: Mag 26, 2026
ExploitDB:
Other exploit source:
Google Dorks:

Description

AI Translation Available

The InputFilter::getInstance() method omitted a security sensitive parameter from the instance cache key.

https://developer.joomla.org/security-centre/1049-20260517-…
https://developer.joomla.org/security-centre/1049-20260517-core-incorrect-cache…