Joomla · Joomla! · CVE-2021-26028
**Name of the Vulnerable Software and Affected Versions**
Joomla! versions 3.0.0 through 3.9.24
**Description**
An issue was discovered where extracting a specifically crafted zip package could write files outside of the intended path.
**Recommendations**
For Joomla! versions 3.0.0 through 3.9.24, update to a version that contains a fix for this issue.