Medium severity6.5NVD Advisory· Published Jun 4, 2026· Updated Jun 4, 2026
CVE-2019-25740
CVE-2019-25740
Description
Joomla com_jsjobs 1.2.6 contains an arbitrary file deletion vulnerability that allows authenticated attackers to delete files by manipulating custom userfield parameters. Attackers can send POST requests to the job.savejob task with path traversal sequences in the field_2 parameter to delete arbitrary files accessible to the web server.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Range: <=1.2.6
- Range: <=1.2.6
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.