Easy Discuss
by Joomla
CVEs (3)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-21625 | 0.00 | — | 0.00 | Jan 16, 2026 | User provided uploads to the Easy Discuss component for Joomla aren't properly validated. Uploads are purely checked by file extensions, no mime type checks are happening. | |||
| CVE-2026-21624 | 0.00 | — | 0.00 | Jan 16, 2026 | Lack of input filterung leads to a persistent XSS vulnerability in the user avatar text handling of the Easy Discuss component for Joomla. | |||
| CVE-2026-21623 | 0.00 | — | 0.00 | Jan 16, 2026 | Lack of input filterung leads to a persistent XSS vulnerability in the forum post handling of the Easy Discuss component for Joomla. |
- CVE-2026-21625Jan 16, 2026risk 0.00cvss —epss 0.00
User provided uploads to the Easy Discuss component for Joomla aren't properly validated. Uploads are purely checked by file extensions, no mime type checks are happening.
- CVE-2026-21624Jan 16, 2026risk 0.00cvss —epss 0.00
Lack of input filterung leads to a persistent XSS vulnerability in the user avatar text handling of the Easy Discuss component for Joomla.
- CVE-2026-21623Jan 16, 2026risk 0.00cvss —epss 0.00
Lack of input filterung leads to a persistent XSS vulnerability in the forum post handling of the Easy Discuss component for Joomla.