Vulnerabilities
Vulnerable Software
Ollyo:  Security Vulnerabilities
The Joomla extension Helix Ultimate is vulnerable to an unauthenticated stored XSS.
CVSS Score
8.7
EPSS Score
0.003
Published
2026-07-13
The Joomla extension Helix Ultimate is vulnerable to an unauthenticated arbitrary file deletion.
CVSS Score
8.8
EPSS Score
0.002
Published
2026-07-13
The Helix3 plugin for Joomla exposes an ajax handler task, that allows unauthenticated attackers to delete arbitrary files, write arbitrary JSON files and update template parameters.
CVSS Score
7.5
EPSS Score
0.002
Published
2026-06-29
CVE-2026-48908
Known exploited
A vulnerability in SP Page Builder for Joomla allows unauthenticated users to upload arbitrary files, ultimately resulting in the upload and execution of PHP code.
CVSS Score
10.0
EPSS Score
0.016
Published
2026-06-20


Contact Us

Shodan ® - All rights reserved