CVE-2026-48902

Name: VulnX Platform
Author: Studio Consi

Published: Mag 26, 2026 Last Modified: Mag 26, 2026

ExploitDB:

Other exploit source:

Google Dorks:

AI Translation Available

The password and username reset features created plain http links for https connections if the 'Force SSL' flag wasn't explicitly set.

https://developer.joomla.org/security-centre/1050-20260518-core-transport-encry…