VYPR

RSMail!

by Rsjoomla

CVEs (2)

  • CVE-2025-30084MedJun 5, 2025
    risk 0.40cvss 6.1epss 0.00

    A stored XSS vulnerability in RSMail! component 1.19.20 - 1.22.26 for Joomla was discovered. The issue occurs within the dashboard component, where user-supplied input is not properly sanitized before being stored and rendered. An attacker can inject malicious JavaScript code…

  • CVE-2025-50056MedJul 18, 2025
    risk 0.33cvss epss 0.00

    A reflected XSS vulnerability in RSMail! component 1.19.20 - 1.22.26 28 Joomla was discovered. The issue allows remote attackers to inject arbitrary web script or HTML via the crafted parameter.