Skip to content
LEARN

Recursos de Aprendizaje

Expande tu conocimiento con nuestro contenido curado.

Documentos

Talleres, presentaciones y demos.

Taller

DNS

Pasos para controlar tu propio dns

Ver Presentación

Vulnerabilidades (CVE)

Vulnerabilidades activamente explotadas o de severidad máxima.

Activamente explotadaCVSS 9.8

CVE-2026-56291

balbooa:forms
PhpBackendCyberSecurityCloudLinux

Balbooa Forms contains an unrestricted upload of file with dangerous type vulnerability that allows an unauthenticated arbitrary file upload which could allow uploading of executable files leading to full RCE.

Análisis

Balbooa Forms for Joomla is vulnerable to an unauthenticated arbitrary file upload that leads to full Remote Code Execution (RCE). If you are using this specific extension, you should update to the latest version immediately to prevent complete site takeover.

Agregada al KEV: 2026-07-10Ver detalle
Activamente explotadaCVSS 9.8

CVE-2026-48939

joomlic:icagenda
PhpBackendCyberSecurityLinuxCloud

iCagenda contains an unrestricted upload of file with dangerous type vulnerability that allows the upload of arbitrary files in the file attachment feature, ultimately resulting in PHP code upload and execution.

Análisis

La extensión iCagenda para Joomla permite la carga de archivos sin restricciones, facilitando la ejecución remota de código PHP en el servidor. Esta vulnerabilidad está siendo explotada activamente en ataques reales, lo que permite a un atacante tomar control total del sitio web. Es urgente actualizar la extensión para mitigar el riesgo de compromiso de la infraestructura y el sistema de archivos.

Agregada al KEV: 2026-07-10Ver detalle
Activamente explotadaCVSS 10.0EPSS 0.29

CVE-2026-48282

adobe:coldfusion
BackendCyberSecurityJavaLinuxWindowsCloud

Adobe ColdFusion contains a path traversal vulnerability that could lead to arbitrary code execution in the context of the current user.

Análisis

Adobe ColdFusion presenta una vulnerabilidad crítica de Path Traversal que permite la ejecución de código arbitrario sin necesidad de interacción del usuario. Al alcanzar un puntaje de 10.0, este fallo permite a un atacante tomar control total del servidor afectado en el contexto del servicio actual. Es imperativo actualizar las instancias de ColdFusion inmediatamente para proteger la infraestructura del backend.

Agregada al KEV: 2026-07-07Ver detalle
Activamente explotadaCVSS 9.8

CVE-2026-56290

joomlack:page_builder_ck
PhpBackendCyberSecurityLinux

Joomlack Page Builder contains an improper access control vulnerability that could allow for remote code execution via unauthenticated arbitrary file upload.

Análisis

Page Builder CK for Joomla is vulnerable to an unauthenticated arbitrary file upload leading to Remote Code Execution (RCE). While the CVSS score is 9.8, the impact is limited to users of this specific extension, who should update to the latest version immediately.

Agregada al KEV: 2026-07-07Ver detalle
Activamente explotadaCVSS 8.4

CVE-2026-55255

langflow:langflow
IAPythonBackendCyberSecurityMachineLearningDataScience

Langflow contains an authorization bypass through user-controlled key vulnerability which allows an authenticated attacker to execute any flow belonging to another user by specifying the victim's flow ID in the request.

Análisis

Langflow versions prior to 1.9.2 contain a critical IDOR vulnerability that allows an authenticated user to execute AI flows belonging to other users. While the CVSS is high at 9.9, the requirement for authentication and the specific nature of the tool keep it below the community alert threshold.

Agregada al KEV: 2026-07-07Ver detalle
Activamente explotadaCVSS 9.8

CVE-2026-48908

ollyo:sp_page_builder
PhpBackendCyberSecurityLinux

JoomShaper SP Page Builder contains an unrestricted upload of file with dangerous type vulnerability that allows unauthenticated users to upload arbitrary files, ultimately resulting in the upload and execution of PHP co…

Análisis

Esta vulnerabilidad en SP Page Builder para Joomla permite a atacantes no autenticados subir archivos arbitrarios y ejecutar código PHP en el servidor. Se encuentra en la lista KEV de CISA debido a que está siendo explotada activamente, lo que facilita el compromiso total del sitio y la infraestructura.

Agregada al KEV: 2026-07-07Ver detalle
InicioEventosBlogRecursos
Equipo