| ID | CVE-2026-48909 | ||||||
| Sažetak | SP LMS (com_splms) < 4.1.4 by JoomShaper deserializes user-controlled cookie data without validation, enabling an unauthenticated remote attacker to execute arbitrary code on the server. | ||||||
| Reference | |||||||
| CVSS |
|
||||||
| Pristup |
|
||||||
| Impact |
|
||||||
| CVSS vektor | None | ||||||
| Zadnje važnije ažuriranje | 20-06-2026 - 13:16 | ||||||
| Objavljeno | 20-06-2026 - 13:16 |
