CVE-2021-26040 – [20210801] - Core - Insufficient access control for com_media deletion endpoint

https://notcve.org/view.php?id=CVE-2021-26040

An issue was discovered in Joomla! 4.0.0. The media manager does not correctly check the user's permissions before executing a file deletion command. Se ha detectado un problema en Joomla! versión 4.0.0. • https://developer.joomla.org/security-centre/861-20210801-core-insufficient-access-control-for-com-media-deletion-endpoint • CWE-863: Incorrect Authorization •