A vulnerability was found in rsjoomla RSFiles Plugin up to 1.17.11. It has been rated as critical. Affected is an unknown function of the component File Upload. The manipulation leads to unrestricted upload.

This vulnerability is listed as CVE-2026-57827. The attack may be initiated remotely. There is no available exploit.