CVE-2019-25740EPSS p24.3%

CVE-2019-25740CVE-2019-25740

Description

Joomla com_jsjobs 1.2.6 contains an arbitrary file deletion vulnerability that allows authenticated attackers to delete files by manipulating custom userfield parameters. Attackers can send POST requests to the job.savejob task with path traversal sequences in the field_2 parameter to delete arbitrary files accessible to the web server.

Scoring

CVSS 6.5 ()
VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
EPSS0.33% probability of exploitation · percentile 24.3% · 2026-06-21T12:00:28Z
Last modified2026-06-04

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-4758
CVE
CVE-2025-32660
CVE
CVE-2025-10916
CVE
CVE-2025-7846
CVE
CVE-2025-32627
CVE
CVE-2025-2932
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.