CNNVD-202507-2430 Information

CNNVD ID

CNNVD-202507-2430

Related CVE

CVE-2025-50058

• CNNVD Published: 2025-07-18

Description (Chinese)

RSJoomla! RSDirectory! component for Joomla是RSJoomla!公司的一个用于Joomla内容管理系统的扩展组件。 RSJoomla! RSDirectory! component for Joomla 1.0.0至2.2.8版本存在跨站脚本漏洞，该漏洞源于对评论回复组件处理不当，可能导致存储型跨站脚本攻击。

Description (English)

RSDirectory! Component for Joola is an extension of the Joomla Content Management System for RS Joomla! Versions RSJoomla! RSDirectory! Component for Joomla 1.0.0 to 2.2.8 contain a cross-site script loophole, which arises from the inappropriate handling of comment response components and may lead to storage-type cross-site script attacks.

Hazard Level

Critical

Vulnerability Type

跨站脚本

Affected Vendor

RSJoomla!

Published

2025-07-18

Last Modified

2026-02-24

References

https://rsjoomla.com/ https://access.redhat.com/security/cve/cve-2025-50058