CVE Watchtower ← Back to CVE ListCVE-2026-48908NVDVulnerability SummaryA vulnerability in SP Page Builder for Joomla allows unauthenticated users to upload arbitrary files, ultimately resulting in the upload and execution of PHP code.Severity LevelUNKNOWNPublished DateJun 20, 2026Last ModifiedJul 7, 2026Exploitation StatusACTIVEEPSS Score (30-Day)0.80%ProbabilityRoot Weakness (CWE)N/AExternal Referenceshttps://www.joomshaper.com/page-builder