{"uuid": "cc82122e-7c2f-41eb-ab8c-17ebc906a242", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48939", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mor7wauvu62f", "content": "CRITICAL: iCagenda for Joomla (v1.0.0 \u2013 4.0.7) lets attackers upload + execute PHP files, risking full server compromise. No fix yet \u2014 disable feature or apply WAF rules ASAP. https://radar.offseq.com/threat/cve-2026-48939-cwe-284-improper-access-control-in--bc923bedc1d1c47e #OffSeq #Joomla \ud83d\udee1\ufe0f", "creation_timestamp": "2026-06-21T01:30:28.581736Z"}