CVE-2026-48907: Widget Factory Joomla Content Editor Improper Access Control Vulnerability
Summary
A vulnerability in Widget Factory Joomla Content Editor allows unauthenticated users to upload and execute PHP code by creating new editor profiles. This improper access control flaw necessitates applying vendor-provided mitigations to prevent potential exploitation.
IFF Assessment
The identified vulnerability allows for unauthorized code execution, which is detrimental to defenders by creating an entry point for attackers.
Severity
This score reflects a High severity due to the potential for remote code execution (Attack Vector: Network) and significant impact on Confidentiality, Integrity, and Availability, without requiring user interaction or privileges.
CISA KEV: Listed as actively exploited. Federal patch due: June 19, 2026. Known ransomware use: Unknown.
Defender Context
This vulnerability highlights the ongoing risk of improper access control in web content editors, which can lead to remote code execution. Defenders should prioritize patching or applying vendor-specific mitigations for this and similar components, especially given the potential for exploitation by threat actors.