CVE Watchtower ← Back to CVE ListCVE-2026-57827NVDVulnerability SummaryThe Joomla extension RSFiles is vulnerable to an unauthenticated arbitrary file upload that allows uploading executable files and leads to full RCE.Severity LevelCRITICAL(10.0)Published DateJul 11, 2026Last ModifiedJul 11, 2026Exploitation StatusNo confirmed exploitation yetEPSS Score (30-Day)Data PendingRoot Weakness (CWE)N/ACVSS v4.0 Base MetricsExternal Referenceshttps://www.rsjoomla.com/joomla-extensions/joomla-download-manager.htmlhttps://mysites.guru/blog/rsfiles-unauthenticated-file-upload-rce/