EIP-2026-108762
PRE-CVEJoomla! Component JS Support Ticket (com_jssupportticket) 1.1.6 - 'ticket.php' Arbitrary File Deletion
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-108762. PoCs published by qw3rTyTy.
AI-analyzed exploit summary This exploit demonstrates an authenticated arbitrary file deletion vulnerability in Joomla! component com_jssupportticket. The vulnerability arises from insufficient validation in the `storeTicket` function, allowing an attacker to delete arbitrary files via directory traversal in the `19_2` parameter.
Description
Joomla! Component JS Support Ticket (com_jssupportticket) 1.1.6 - 'ticket.php' Arbitrary File Deletion
Exploits (1)
This exploit demonstrates an authenticated arbitrary file deletion vulnerability in Joomla! component com_jssupportticket. The vulnerability arises from insufficient validation in the `storeTicket` function, allowing an attacker to delete arbitrary files via directory traversal in the `19_2` parameter.