Vulnerability in Joomshaper.net Sp Page Builder Extension For Joomla
CVE-2026-48908
A vulnerability in the SP Page Builder for Joomla allows the upload of arbitrary files for unauthenticated users, ultimately resulting in PHP code upload and execution.
Affected products
- Joomshaper.net Sp Page Builder Extension For Joomla — versions 1.0.0-6.6.1
Weakness classification (CWE)
References
- security@joomla.org (product)