Vulnerabilities > Widgetfactorylimited > JCE > 2.5.0

DATE CVE VULNERABILITY TITLE RISK
2020-03-09 CVE-2015-7339 Unrestricted Upload of File with Dangerous Type vulnerability in Widgetfactorylimited JCE 2.5.0/2.5.1/2.5.2
JCE Joomla Component 2.5.0 to 2.5.2 allows arbitrary file upload via a .php file extension for an image file to the /com_jce/editor/libraries/classes/browser.php script.
network
low complexity
widgetfactorylimited CWE-434
6.5