Description
The Joomla extension Page Builder CK is vulnerable to an unauthenticated arbitrary file upload that allows uploading executable files and leads to full RCE.
Published: 2026-06-29
Score: 10 Critical
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The Joomla extension Page Builder CK for Joomla contains an improper access control flaw that permits unauthenticated users to upload arbitrary files, including executable scripts, which are then executed by the web server. Attackers can therefore achieve full remote code execution on the host system.

Affected Systems

All installations of the joomlack.fr Page Builder CK extension for Joomla that are running any version prior to 3.6.0 are vulnerable. Site administrators who have not upgraded to the patched version cannot be assured of security.

Risk and Exploitability

The vulnerability scores a CVSS 10, indicating critical severity. While EPSS data is not available, the flaw’s unauthenticated exploitation path suggests a high likelihood of real‑world attacks. It is not yet listed in the CISA KEV catalog. Attackers can send crafted HTTP requests to the extension’s upload endpoint from any network accessible location, upload malicious scripts, and then trigger their execution with the web server’s privileges.

Generated by OpenCVE AI on June 29, 2026 at 16:21 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade the Page Builder CK extension to version 3.6.0 or later, which removes the unauthenticated upload capability.
  • If an upgrade cannot be applied immediately, disable the extension or restrict upload access so that only authenticated administrators can use it.
  • Configure the web server to prevent execution of files in the upload directory, for example by disabling script execution or adding appropriate .htaccess rules.
  • Verify that no other vulnerable extensions or components are present on the site.

Generated by OpenCVE AI on June 29, 2026 at 16:21 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 30 Jun 2026 17:30:00 +0000

Type Values Removed Values Added
References

Mon, 29 Jun 2026 17:30:00 +0000

Type Values Removed Values Added
References

Mon, 29 Jun 2026 16:30:00 +0000

Type Values Removed Values Added
References
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Mon, 29 Jun 2026 15:00:00 +0000

Type Values Removed Values Added
Description The Joomla extension Page Builder CK is vulnerable to an unauthenticated arbitrary file upload that allows uploading executable files and leads to full RCE.
Title Joomla Extension - joomlack.fr - Unauthenticated file upload in Page Builder CK extension < 3.6.0
Weaknesses CWE-284
References
Metrics cvssV4_0

{'score': 10, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:A/AU:Y/U:Red'}

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: Joomla

Published:

Updated: 2026-06-30T16:46:13.966Z

Reserved: 2026-06-20T11:57:32.752Z

Link: CVE-2026-56290

cve-icon Vulnrichment

Updated: 2026-06-29T15:12:24.172Z

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-29T16:30:17Z

Weaknesses