Skip to content

CVE lookup

CVE-2026-48939

Pruva has a verified reproduction for CVE-2026-48939: iCagenda unauthenticated file upload RCE in public event submission form. The canonical evidence record is REPRO-2026-00259.

REPRO

REPRO-2026-00259

Package

iCagenda · joomla

Severity

CRITICAL

Status

published