VulnerAlert



APPLICATION
JOOMLA
05-06-2025 14:38

CVE-2025-27754 Vulnerabilidad documentada

6.5 MEDIUM
Tags
#joomla
#xss
#plugin
#source
#javascript
#java
#application
#vulnerability
#affected
#authenticated
#malicious
#inject
#execute
#discover
#allow
#affect
Descripción
A stored XSS vulnerability in RSBlog! component 1.11.6 - 1.14.4 for Joomla was discovered. The allows authenticated users to inject malicious JavaScript into the plugin's resource. injected payload is by application and later executed when other view affected content.
https://rsjoomla.com/
Referencia
Link externo
Ver detalles

Fuente
https://nvd.nist.gov/vuln/detail/CVE-2025-27754
Resultados similares
Coincidentes en almenos en 50% de los tags
07-06-2025
Malicious npm packages posing as utilities delete project directories Two malicious packages ha...
Ver información
07-06-2025 CVE-2025-5399
Due to a mistake in libcurl's WebSocket code, a malicious server can send a particularly crafte...
Ver información
Icons made by Freepik from www.flaticon.com
Este Proyecto fue cofinanciado por el Consejo Nacional de Ciencia y Tecnología (CONACYT) a través del PROINNOVA 2021/2023
Proyecto realizado por