CVE-2026-60024 in Events Bookinginfo

Summary

by MITRE • 07/17/2026

The Joomla extension Events Booking prior version 5.8.0 did by default allow unauthenticated users to upload media assets.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Analysis

by VulDB Data Team • 07/17/2026

The vulnerability in Joomla extension Events Booking prior to version 5.8.0 represents a critical security flaw that allowed unauthorized file uploads by unauthenticated users, creating significant risks for web applications utilizing this component. This issue stems from inadequate access control mechanisms within the extension's media handling functionality, where default configurations failed to properly validate user authentication status before permitting file upload operations.

From a technical perspective, the flaw manifests as a lack of proper authorization checks during the file upload process, enabling any visitor to the website to submit media assets without requiring valid credentials or administrative privileges. The vulnerability falls under CWE-285, which addresses improper authorization issues in software systems, specifically targeting scenarios where applications fail to verify user permissions before granting access to sensitive operations. This weakness creates an attack surface that allows malicious actors to exploit the system through unauthenticated file uploads.

The operational impact of this vulnerability extends beyond simple unauthorized access, as attackers can leverage the upload functionality to deploy malicious files such as web shells, malware payloads, or other harmful content that could compromise the entire web application. When combined with other vulnerabilities in the Joomla ecosystem, this flaw provides adversaries with a potential initial foothold for more extensive attacks, including data exfiltration, system compromise, or denial of service conditions.

The vulnerability aligns with several ATT&CK techniques including T1078 for valid accounts and T1566 for malicious file execution, as attackers can utilize the unauthenticated upload capability to establish persistent access and execute arbitrary code within the target environment. Organizations running affected versions face significant risks including unauthorized content injection, potential data breaches, and compromised system integrity that could lead to complete application takeover.

Mitigation strategies should include immediate upgrade to Events Booking version 5.8.0 or later, which addresses the authorization flaw through proper authentication validation mechanisms. Additionally, administrators should implement network-level restrictions such as firewall rules to limit access to upload endpoints, enable additional logging for file upload activities, and conduct regular security assessments of third-party extensions. The remediation process must also include reviewing existing file permissions and ensuring that all uploaded content undergoes appropriate security scanning before being made available to users. Organizations should also consider implementing web application firewalls to detect and block suspicious upload attempts, while maintaining comprehensive backup procedures to quickly restore systems in case of successful exploitation attempts.

Responsible

Joomla

Reservation

07/08/2026

Disclosure

07/17/2026

Moderation

accepted

CPE

ready

EPSS

0.00000

KEV

no

Activities

low

Sources

Do you know our Splunk app?

Download it now for free!