{"uuid": "7ee39bd0-2235-4d22-9d2b-074fe981fcbf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48908", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116782676365105563", "content": "CRITICAL vuln (CVSS 10) in Joomla SP Page Builder (1.0.0 \u2013 6.6.1): CVE-2026-48908 enables unauthenticated PHP uploads, risking full compromise. No patch yet \u2014 restrict/disable extension, monitor activity. Details: https://radar.offseq.com/threat/cve-2026-48908-cwe-284-improper-access-control-in--a8937f9d4a0573e0 #OffSeq #Joomla #CVE #AppSec", "creation_timestamp": "2026-06-20T13:30:35.322922Z"}