CVE-2025-27754 in RSBlog Componentالمعلومات

الملخص

بحسب MITRE • 05/06/2025

A stored XSS vulnerability in RSBlog! component 1.11.6 - 1.14.4 for Joomla was discovered. The vulnerability allows authenticated users to inject malicious JavaScript into the plugin's resource. The injected payload is stored by the application and later executed when other users view the affected content.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

مسؤول

Joomla

حجز

06/03/2025

إفشاء

05/06/2025

الاعتدال

تمت الموافقة

إدخال

VDB-311254

EPSS

0.00186

KEV

لا

النشاطات

منخفض جدًا

القطاع

Hostingprovider

المصادر

Want to know what is going to be exploited?

We predict KEV entries!