GHSA-h52w-g3vr-5c63MediumCVSS 4.3

Lack of CSRF token validation lead to a CSRF attack vector in the admin activation endpoint of...

Published
May 26, 2026
Last Modified
May 27, 2026

🔗 CVE IDs covered (1)

CVE-2026-35220

📋 Description

Lack of CSRF token validation lead to a CSRF attack vector in the admin activation endpoint of com_users.

🔗 References (3)