VYPR

JCE

by Joomla

CVEs (2)

  • CVE-2015-7339Mar 9, 2020
    risk 0.00cvss epss 0.01

    JCE Joomla Component 2.5.0 to 2.5.2 allows arbitrary file upload via a .php file extension for an image file to the /com_jce/editor/libraries/classes/browser.php script.

  • CVE-2012-2902May 21, 2012
    risk 0.00cvss epss 0.01

    Unrestricted file upload vulnerability in editor/extensions/browser/file.php in the Joomla Content Editor (JCE) component before 2.1 for Joomla!, when chunking is set to greater than zero, allows remote authors to execute arbitrary PHP code by uploading a PHP file with a double…