GHSA-wjv4-xh6c-w4j7Critical

The Joomla extension Phoca Downloads is vulnerable to an authenticated arbitrary file upload that...

Published
July 11, 2026
Last Modified
July 11, 2026

🔗 CVE IDs covered (1)

📋 Description

The Joomla extension Phoca Downloads is vulnerable to an authenticated arbitrary file upload that allows registered users uploading executable files and leads to full RCE.

🔗 References (4)