CVE-2026-48908
Joomla Extension - joomshaper.com - Remote Code Execution in SP Pagebuilder extension for Joomla < 6.6.12
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
A vulnerability in the SP Page Builder for Joomla allows the upload of arbitrary files for unauthenticated users, ultimately resulting in PHP code upload and execution.
| CWE | CWE-284 |
| Vendor | joomshaper.net |
| Product | sp page builder extension for joomla |
| Published | Jun 20, 2026 |
Stay Ahead of the Next One
Get instant alerts for joomshaper.net sp page builder extension for joomla
Be the first to know when new unknown vulnerabilities affecting joomshaper.net sp page builder extension for joomla are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
joomshaper.net / SP Page Builder extension for Joomla
1.0.0-6.6.1
References
Credits
Phil Taylor