VYPR

Rsform!pro Component For Joomla

by Rsjoomla.com

CVEs (3)

  • CVE-2025-27754MedJun 5, 2025
    risk 0.42cvss 6.5epss 0.00

    A stored XSS vulnerability in RSBlog! component 1.11.6 - 1.14.4 for Joomla was discovered. The vulnerability allows authenticated users to inject malicious JavaScript into the plugin's resource. The injected payload is stored by the application and later executed when other…

  • CVE-2025-30084MedJun 5, 2025
    risk 0.40cvss 6.1epss 0.00

    A stored XSS vulnerability in RSMail! component 1.19.20 - 1.22.26 for Joomla was discovered. The issue occurs within the dashboard component, where user-supplied input is not properly sanitized before being stored and rendered. An attacker can inject malicious JavaScript code…

  • CVE-2025-27444MedJun 4, 2025
    risk 0.31cvss 4.8epss 0.00

    A reflected XSS vulnerability in RSform!Pro component 3.0.0 - 3.3.13 for Joomla was discovered. The issue arises from the improper handling of the filter[dateFrom] GET parameter, which is reflected unescaped in the administrative backend interface. This allows an authenticated…