If you discover a security vulnerability in JoomCCK, please report it responsibly.

Contact: support@joomcoder.com

• Include a detailed description of the vulnerability and steps to reproduce it.
• We will acknowledge receipt within 48 hours.
• We aim to provide an initial assessment within 5 business days.
• Please do not publicly disclose the vulnerability until we have released a fix and notified affected users.

We appreciate responsible disclosure and will credit reporters (with permission) in our security advisories.

• Severity: Critical
• Affected versions: <= 6.2.0
• Fixed in: 6.2.1
• Description: A security vulnerability allowed unauthenticated access to certain component controllers, potentially exposing administrative functionality to unauthorized users.
• Recommendation: Update to version 6.2.1 or later immediately. Review your site for any signs of unauthorized access or suspicious files.
• Download: https://github.com/JoomCoder-com/JoomCCK/releases