CVE-2026-57828

CVE-2026-57828CVE-2026-57828

Description

The Joomla extension Phoca Downloads is vulnerable to an authenticated arbitrary file upload that allows registered users uploading executable files and leads to full RCE.

Scoring

Last modified2026-07-11
Sourced from NVD. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.