Unauthenticated File Upload Vulnerability in RSFiles Joomla Extension
CVE-2026-57827

10CRITICAL

Key Information:

Vendor
CVE Published:
11 July 2026

What is CVE-2026-57827?

The RSFiles Joomla extension presents a security vulnerability that allows for unauthenticated users to upload arbitrary files, potentially enabling the execution of malicious code remotely. This flaw can lead to significant security risks for affected Joomla installations as it opens pathways for attackers to manipulate and control the application.

Affected Version(s)

rsjoomla.com RSFiles extension for Joomla 1.0-1.17.11

References

CVSS V4

Score:
10
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Phil Taylor
.