Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2026-35220

Lack of CSRF token validation lead to a CSRF attack vector in the admin activation endpoint of com_users.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 0.0%
CVSS Severity
CVSS v3 Score 4.3
Products affected by CVE-2026-35220
  • Joomla » Joomla! » Version: 6.0.0
    cpe:2.3:a:joomla:joomla!:6.0.0
  • Joomla » Joomla! » Version: 6.0.1
    cpe:2.3:a:joomla:joomla!:6.0.1
  • Joomla » Joomla! » Version: 6.0.2
    cpe:2.3:a:joomla:joomla!:6.0.2
  • Joomla » Joomla! » Version: 6.0.3
    cpe:2.3:a:joomla:joomla!:6.0.3
  • Joomla » Joomla! » Version: 6.0.4
    cpe:2.3:a:joomla:joomla!:6.0.4
  • Joomla » Joomla! » Version: 6.1.0
    cpe:2.3:a:joomla:joomla!:6.1.0


Products
Pricing
Contact Us

Shodan ® - All rights reserved