Every CVE whose affected-product data names Joomlaworks K2, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (10)
CVE-2019-19576 — CVSS 9.8 (critical): class.upload.php in verot.net class.upload before 1.0.3 and 2.x before 2.0.4, as used in the K2 extension for Joomla! and other products…
CVE-2019-19634 — CVSS 9.8 (critical): class.upload.php in verot.net class.upload through 1.0.3 and 2.x through 2.0.4, as used in the K2 extension for Joomla! and other products…
CVE-2018-7482 — CVSS 7.5 (high): The K2 component 2.8.0 for Joomla! has Incorrect Access Control with directory traversal, allowing an attacker to download arbitrary files…
CVE-2026-48943 — CVSS 6.5 (medium): K2 ≤ 2.24 contains a mass-assignment defect in the K2 system user plugin `plg_user_k2`. A Registered Joomla user, by including the field…
CVE-2026-48941 — CVSS 6.5 (medium): The K2 frontend `item.checkin` task accepts an unauthenticated `sigProFolder` query parameter and uses it directly to address a…
CVE-2026-48944 — CVSS 6.5 (medium): The K2 frontend article-save handler accepts an `attachment[N][existing]` POST field that is concatenated with `JPATH_SITE/` and passed to…
CVE-2026-48946 — CVSS 6.3 (medium): The K2 frontend article-attachment upload path accepts files whose extension is `.php`, and Apache's standard mod_php matches `\.php$` and…
CVE-2026-48942 — CVSS 6.1 (medium): K2 ≤ 2.26 renders the `#__k2_users.image` column directly into HTML `src` attributes via two distinct templates, in both cases without…
CVE-2026-48945 — CVSS 5.3 (medium): The K2 article gallery upload path accepts a zip/tar archive, extracts it under `/media/k2/galleries/<id>/`, and only renames image files…
CVE-2026-48940 — CVSS 3.4 (low): A Joomla user with K2 "create item" rights (Author tier by default) can submit an article whose `embedVideo` POST field contains a raw…