KEV Entry
CVE-2026-48907
Known Exploited Vulnerability Entry External Catalog
Entry Details
Confirmed Exploited2026-07-06 00:00 UTC
Timestamps
2026-07-06
2026-07-06
Scope
Affected: Widget Factory (Pty) Ltd / Joomla Content Editor (JCE) | Description: Critical vulnerability in JCE editor extension. | CWEs: CWE-284 | Origin source: CERT-PL | Notes: https://www.joomlacontenteditor.net/news/jce-pro-2-9-99-5-released
References
- {'id': 'CVE-2026-48907', 'url': 'https://www.cve.org/CVERecord?id=CVE-2026-48907'}
- {'id': 'EUVD-2026-34789', 'url': 'https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-34789'}
- {'id': 'source', 'url': 'https://www.joomlacontenteditor.net/news/jce-pro-2-9-99-5-released'}
b3395aed-c1a6-41e0-afc5-698af243eb5b
cce329bf-df49-4c6e-a027-80be2e6483bd
2026-07-06 12:00 UTC
2026-07-06 12:00 UTC
Evidence
1| Type | Source | Signal | Confidence | Details | GCVE Metadata |
|---|---|---|---|---|---|
| csirt_report | enisa-cnw-kev | successful_exploitation | 0.75 |
View details
|
- |