Vulnerability in Joomlacontenteditor.net Joomla Content Editor (Jce) Extension For
CVE-2026-48907
A vulnerability in the JCE editor extension for Joomla allows the creation of new editor profiles for unauthenticated users, ultimately resulting in PHP code upload and execution.
Affected products
- Joomlacontenteditor.net Joomla Content Editor (Jce) Extension For — versions 1.0.0-2.9.99.4
Weakness classification (CWE)
References
- security@joomla.org (product)