Local File Inclusion Vulnerability in Joomla Products by Joomla
CVE-2026-40383
7.5HIGH
What is CVE-2026-40383?
An improperly validated input from users in Joomla products can allow for unauthorized access to local files, potentially exposing sensitive data and compromising system integrity. This vulnerability emphasizes the importance of rigorous input validation to safeguard web applications from exploitation.
Affected Version(s)
Joomla! CMS 3.2.1-5.4.5
Joomla! CMS 6.0.0-6.1.0
References
CVSS V4
Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
Physical
Privileges Required:
Undefined
User Interaction:
None
Timeline
Vulnerability published
Vulnerability Reserved
Credit
Doyensec in collaboration with Claude and Anthropic Research