CVE-2026-48907
CRITICAL CISACVSS Score
N/A
Severity
CRITICAL
Source
CISA
Published
Jun 16, 2026
Description
Widget Factory โ Joomla Content Editor : Widget Factory Joomla Content Editor contains an improper access control vulnerability which could allow for upload and execution of PHP code via the creation of new editor profiles for unauthenticated users.