Widgetfactorylimited: >> Jce >> 2.6.1 Security Vulnerabilities
CVE-2026-48907
A vulnerability in the JCE editor extension for Joomla allows the creation of new editor profiles for unauthenticated users, ultimately resulting in PHP code upload and execution.
Known exploited
CVSS Score
10.0
EPSS Score
0.069
Published
2026-06-05