The U.S. Cybersecurity and Infrastructure Security Agency
(CISA) on Tuesday added a maximum-severity security flaw impacting
Widget Factory Joomla Content Editor (JCE) to its Known Exploited
Vulnerabilities (KEV) catalog, citing evidence of active
exploitation. The vulnerability, tracked as CVE-2026-48907 (CVSS
score: 10.0), is a case of improper access control that could
facilitate arbitrary
Read more https://thehackernews.com/2026/06/cisa-warns-of-actively-exploited-joomla.html
