{"vulnerability": "CVE-2026-48908", "sightings": [{"uuid": "193561c6-7769-4222-8d0c-77be56086404", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48908", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mopxorztly2f", "content": "SP Page Builder for Joomla hit by CRITICAL vuln (CVE-2026-48908, CVSS 10) \u2014 unauthenticated PHP uploads possible. Restrict/disable extension & monitor your site. No patch yet. https://radar.offseq.com/threat/cve-2026-48908-cwe-284-improper-access-control-in--a8937f9d4a0573e0 #OffSeq #Joomla #Vuln...", "creation_timestamp": "2026-06-20T13:30:28.248311Z"}, {"uuid": "7ee39bd0-2235-4d22-9d2b-074fe981fcbf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48908", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116782676365105563", "content": "CRITICAL vuln (CVSS 10) in Joomla SP Page Builder (1.0.0 \u2013 6.6.1): CVE-2026-48908 enables unauthenticated PHP uploads, risking full compromise. No patch yet \u2014 restrict/disable extension, monitor activity. Details: https://radar.offseq.com/threat/cve-2026-48908-cwe-284-improper-access-control-in--a8937f9d4a0573e0 #OffSeq #Joomla #CVE #AppSec", "creation_timestamp": "2026-06-20T13:30:35.322922Z"}, {"uuid": "d7da2b2f-8e7b-461b-b038-bde411e4bd3b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48908", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mopy7rua3k2d", "content": "CVE-2026-48908 - Joomla Extension - joomshaper.com - Remote Code Execution in SP Pagebuilder extension for Joomla\nCVE ID : CVE-2026-48908\n \n Published : June 20, 2026, 11:57 a.m. | 1\u00a0hour, 12\u00a0minutes ago\n \n Description : A vulnerability in the SP Page Builder for Joomla allows...", "creation_timestamp": "2026-06-20T13:39:57.293723Z"}, {"uuid": "a148f6ba-74cc-488c-a994-be3ffdfbd83d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48908", "type": "seen", "source": "https://bsky.app/profile/cybersecinsight.bsky.social/post/3mosbytrxib2v", "content": "\ud83d\udd0d Vulnerability Spotlight | Part 2/3\n\n\u26a0\ufe0f CVE-2026-48908\n\nA vulnerability in the SP Page Builder for Joomla allows the upload of arbitrary files for unauthenticated users, ultimately resulting in PHP code ...", "creation_timestamp": "2026-06-21T11:40:21.437007Z"}, {"uuid": "32ba867c-00fb-4820-b26e-41d72ab63351", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48908", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/116788487271185894", "content": "It is possible to see elevated activities targeting joomshaper SP Page Builder extension for Joomla (CVE-2026-48908) https://vuldb.com/vuln/372537/cti", "creation_timestamp": "2026-06-21T14:10:21.913422Z"}, {"uuid": "5ad14ce6-fdb3-4c0f-91b5-4edbe96f3f5e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48908", "type": "seen", "source": "https://bsky.app/profile/censys.bsky.social/post/3mp2bbz5mii2b", "content": "\ud83d\udea8 CVE-2026-48908 (CVSS 10.0) A critical flaw in Joomla's SP Page Builder can enable unauthenticated file upload & potential RCE:\n\u25aa\ufe0fVersions 1.0.0\u20136.6.1 affected\n\u25aa\ufe0fActive exploitation reported\n\u25aa\ufe0fPatched in 6.6.2\n\nCensys observed 194,793 web properties loading the component. https://bit.ly/43Y8ONk ", "creation_timestamp": "2026-06-24T15:48:54.608990Z"}, {"uuid": "e355404a-2b62-4c89-9465-0d6c1e4b224e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-48908", "type": "seen", "source": "https://www.acn.gov.it/portale/w/joomla-sp-page-builder-sfruttamento-attivo-in-rete-della-cve-2026-48908", "content": "", "creation_timestamp": "2026-06-26T09:15:02.491617Z"}, {"uuid": "a0b073c5-97d1-43f5-adef-822c72e76c4a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48908", "type": "seen", "source": "https://www.acn.gov.it/portale/w/joomla-sp-page-builder-sfruttamento-attivo-in-rete-della-cve-2026-48908", "content": "Rilevato sfruttamento attivo in rete della CVE-2026-48908 \u2013 gi\u00e0 sanata dal vendor \u2013 presente nel plugin SP Page Builder per il noto CMS Joomla! Tale vulnerabilit\u00e0, qualora sfruttata, potrebbe consentire a un utente malintenzionato remoto di eseguire codice arbitrario sui sistemi interessati.", "creation_timestamp": "2026-06-27T01:00:38.965024Z"}]}