Back to Live Pulse
CriticalPage builder ckUnrestricted Upload of File with Dangerous Type
CVE-2026-56290
Description
The Joomla extension Page Builder CK is vulnerable to an unauthenticated arbitrary file upload that allows uploading executable files and leads to full RCE.
Proof of Concept (POC) Links
Explore how this vulnerability can be reproduced or exploited.