Medium severity6.5NVD Advisory· Published Jun 5, 2025· Updated Jun 17, 2026
CVE-2025-27754
CVE-2025-27754
Description
A stored XSS vulnerability in RSBlog! component 1.11.6 - 1.14.4 for Joomla was discovered. The vulnerability allows authenticated users to inject malicious JavaScript into the plugin's resource. The injected payload is stored by the application and later executed when other users view the affected content.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: 1.11.6-1.14.4
Patches
Vulnerability mechanics
References
1- rsjoomla.comnvdProduct
News mentions
0No linked articles in our index yet.