← ExploitWatch
HomeExploited Vulnerabilities

CVE-2026-48907 — Actively Exploited: Joomla Content Editor (Widget Factory)

Widget Factory Joomla Content Editor contains an improper access control vulnerability which could allow for upload and execution of PHP code via the creation of new editor profiles for unauthenticated users.

CVE IDCVE-2026-48907
VendorWidget Factory
ProductJoomla Content Editor
Vulnerability nameWidget Factory Joomla Content Editor Improper Access Control Vulnerability
Date added2026-06-16
Remediation due2026-06-19
Known ransomware useUnknown
Required actionApply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discon
DescriptionWidget Factory Joomla Content Editor contains an improper access control vulnerability which could allow for upload and execution of PHP code via the creation of new editor profiles for unauthenticated users.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →