RCE in Joomdonation.com Events Booking Extension For Joomla

CVE-2026-60024

The Joomla extension Events Booking prior version 5.8.0 did by default allow unauthenticated users to upload media assets.

Affected products

Weakness classification (CWE)

References