COOEY // HUBcompliance · community · intelligence

FAIL › dossier

iCagenda vendor

2
failure events
0
zero-days
2
RCEs
1
on KEV
1
critical
65
worst shame

Dossier not yet built — the RAG curator builds one for players with ≥2 failure events (factory/dossier.py). The failure history and sentiment below are live.

Failure history 3 events

DateEventSevFlagsShameSummary
2026-07-10 CVE-2026-48939 high ⚡RCE ⌖KEV 65 iCagenda allows arbitrary file uploads leading to PHP code execution via its attachment feature.
2026-07-10 CVE-2026-48939 high ⚡RCE ⌖KEV 65 iCagenda allows arbitrary file uploads leading to PHP code execution via its attachment feature.
2026-06-20 CVE-2026-48939 critical ⚡RCE 50 A vulnerability in the iCagenda extension for Joomla allows the upload of arbitrary files in the file attachment feature, ultimately resulting in PHP code upload and execution.