CVE-2026-48907 in Content Editor Extensioninformation

Résumé

par MITRE • 05/06/2026

A vulnerability in the JCE editor extension for Joomla allows the creation of new editor profiles for unauthenticated users, ultimately resulting in PHP code upload and execution.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsable

Joomla

Réserver

26/05/2026

Divulgation

05/06/2026

Modérer

accepté

Entrée

VDB-368876

CPE

prêt

CWE

CWE-284 (confirmé)

CVSS

7.3 (VulDB)

EPSS

0.00000

KEV

non

Activités

faible

Secteur

Hostingprovider

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-48907
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-48907
CVE Details	https://www.cvedetails.com/cve/CVE-2026-48907/

◂ Précédent Aperçu Suivant ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!