NVD Vulnerability Detail

Search Exploit, PoC

Exploit DB

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2026-48902

Summary	The password and username reset features created plain http links for https connections if the "Force SSL" flag wasn't explicitly set.
Publication Date	May 27, 2026, 2:16 a.m.
Registration Date	May 27, 2026, 4:08 a.m.
Last Update	May 27, 2026, 2:16 a.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://developer.joomla.org/security-centre/1050-20260518-core-transport-encryption-downgrade-for-password-and-username-reset-links.html	security@joomla.org

Common Vulnerabilities List