CVE-2026-21627 - Vulnerability Details - OpenCVE

The vulnerability was rooted in how the Tassos Framework plugin handled specific AJAX requests through Joomla’s com_ajax entry point. Under certain conditions, internal framework functionality could be invoked without proper restriction.

Attack Vector Network

Attack Complexity High

Privileges Required None

Attack Requirements Present

User Interaction None

Vulnerable System Confidentiality Impact High

Vulnerable System Integrity Impact High

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact High

Subsequent System Integrity Impact High

Subsequent System Availability Impact High

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

No data.

No data.

No data.

No data.

References

Link	Providers
https://tassos.gr

History

Fri, 20 Feb 2026 14:30:00 +0000

Type	Values Removed	Values Added
Description		The vulnerability was rooted in how the Tassos Framework plugin handled specific AJAX requests through Joomla’s com_ajax entry point. Under certain conditions, internal framework functionality could be invoked without proper restriction.
Title		Extension - tassos.gr - SQL injection and Unauthenticated File Read in Novarain/Tassos Framework v4.10.14 – v6.0.37 for Joomla
Weaknesses		CWE-284
References		https://tassos.gr
Metrics		cvssV4_0 `{'score': 9.5, 'vector': 'CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H'}`

MITRE

Status: PUBLISHED

Assigner: Joomla

Published: 2026-02-20T14:22:14.744Z

Updated: 2026-02-20T14:22:14.744Z

Reserved: 2026-01-01T04:42:27.960Z

Link: CVE-2026-21627

Vulnrichment

No data.

NVD

Status : Awaiting Analysis

Published: 2026-02-20T15:20:29.467

Modified: 2026-02-20T15:34:10.670

Link: CVE-2026-21627

Redhat

No data.

OpenCVE Enrichment

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-21627", "assignerOrgId": "6ff30186-7fb7-4ad9-be33-533e7b05e586", "state": "PUBLISHED", "assignerShortName": "Joomla", "dateReserved": "2026-01-01T04:42:27.960Z", "datePublished": "2026-02-20T14:22:14.744Z", "dateUpdated": "2026-02-20T14:22:14.744Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "Novarain/Tassos Framework (plg_system_nrframework)", "vendor": "tassos.gr", "versions": [{"status": "affected", "version": "4.10.14\u20136.0.37"}]}, {"defaultStatus": "unaffected", "product": "Convert Forms", "vendor": "tassos.gr", "versions": [{"status": "affected", "version": "3.2.12\u20135.1.0"}]}, {"defaultStatus": "unaffected", "product": "EngageBox", "vendor": "tassos.gr", "versions": [{"status": "affected", "version": "6.0.0\u20137.1.0"}]}, {"defaultStatus": "unaffected", "product": "Google Structured Data", "vendor": "tassos.gr", "versions": [{"status": "affected", "version": "5.1.7\u20136.1.0"}]}, {"defaultStatus": "unaffected", "product": "Advanced Custom Fields", "vendor": "tassos.gr", "versions": [{"status": "affected", "version": "2.2.0\u20133.1.0"}]}, {"defaultStatus": "unaffected", "product": "Smile Pack", "vendor": "tassos.gr", "versions": [{"status": "affected", "version": "1.0.0\u20132.1.0"}]}], "credits": [{"lang": "en", "type": "finder", "value": "p1r0x / ssd-disclosure.com"}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "The vulnerability was rooted in how the Tassos Framework plugin handled specific AJAX requests through Joomla\u2019s com_ajax entry point. Under certain conditions, internal framework functionality could be invoked without proper restriction."}], "value": "The vulnerability was rooted in how the Tassos Framework plugin handled specific AJAX requests through Joomla\u2019s com_ajax entry point. Under certain conditions, internal framework functionality could be invoked without proper restriction."}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV4_0": {"version": "4.0", "attackVector": "NETWORK", "attackComplexity": "HIGH", "attackRequirements": "PRESENT", "privilegesRequired": "NONE", "userInteraction": "NONE", "vulnConfidentialityImpact": "HIGH", "subConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "subIntegrityImpact": "HIGH", "vulnAvailabilityImpact": "HIGH", "subAvailabilityImpact": "HIGH", "exploitMaturity": "NOT_DEFINED", "Safety": "NOT_DEFINED", "Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "valueDensity": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "baseSeverity": "CRITICAL", "baseScore": 9.5, "vectorString": "CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H"}}], "impacts": [{"capecId": "CAPEC-1", "descriptions": [{"lang": "en", "value": "CAPEC-1 Accessing Functionality Not Properly Constrained by ACLs"}]}], "references": [{"tags": ["product"], "url": "https://tassos.gr"}], "problemTypes": [{"descriptions": [{"cweId": "CWE-284", "description": "CWE-284 Improper Access Control", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "6ff30186-7fb7-4ad9-be33-533e7b05e586", "shortName": "Joomla", "dateUpdated": "2026-02-20T14:22:14.744Z"}, "source": {"discovery": "UNKNOWN"}, "title": "Extension - tassos.gr - SQL injection and Unauthenticated File Read in Novarain/Tassos Framework v4.10.14 \u2013 v6.0.37 for Joomla", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}}}