CVE-2026-60024
Description
The Joomla extension Events Booking prior version 5.8.0 did by default allow unauthenticated users to upload media assets.
Metadata
Severity & Metrics
No CVSS data available.
Affected products (1)
| Vendor | Product | Platform | Versions |
|---|---|---|---|
| joomdonation.com | Events Booking extension for Joomla | — | 1.0-5.8.0 |
Weakness (CWE)
| CWE | Source | Description |
|---|---|---|
| CWE-1188 | cna | CWE-1188: Initialization of a Resource with an Insecure Default |
References (1)