SQL Injection Vulnerability in Articles Calendar Extension for Joomla
CVE-2025-26855

Currently unrated

Key Information:

Vendor: Joomcar.net
Status: Articles Calendar Extension For Joomla
Vendor: CVE Published:; 18 July 2025

🔔 Create Joomcar.net Vulnerability Alert

What is CVE-2025-26855?

A vulnerability in the Articles Calendar extension for Joomla allows attackers to exploit SQL injection weaknesses, enabling them to execute arbitrary SQL commands. This can lead to unauthorized access to sensitive data or manipulation of the database, compromising the integrity of the web application. It affects versions 1.0.0 to 1.0.1.0007, necessitating immediate action from website administrators to safeguard their systems.

Affected Version(s)

Articles Calendar extension for Joomla 1.0.0-1.0.1.0007

References

https://joomcar.net/

product

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 18, 2025
Vulnerability Reserved
Feb 16, 2025

Credit

Kamil Szczurowski