SECUNIA ADVISORY ID:
Customer Area (Credentials Required)
Vertical Pigeon has reported a vulnerability in the JCE component for
Joomla!, which can be exploited by malicious users to compromise a
The vulnerability is caused due to the application allowing the
upload of arbitrary files to a folder inside the web root. This can
be exploited to e.g. upload and execute arbitrary PHP files.
The vulnerability is reported in versions prior to 188.8.131.52.
Update to version 184.108.40.206.
PROVIDED AND/OR DISCOVERED BY: