CNNVD-202507-2431 Information

CNNVD ID

CNNVD-202507-2431

Related CVE

CVE-2025-49486

• CNNVD Published: 2025-07-18

Description (Chinese)

Balbooa Gallery是Balbooa公司的一款Joomla扩展程序。 Balbooa Gallery 1.0.0-2.4.0版本存在跨站脚本漏洞，该漏洞源于存储型跨站脚本攻击。

Description (English)

Balbooa Galery is a Jomla extension for Balbooa. Versions 1.0.0-2.4.0 of Balbooa Gallery contain a cross-site script loophole that originates from a storage-type cross-site script attack.

Hazard Level

Medium

Vulnerability Type

跨站脚本

Affected Vendor

Balbooa

Published

2025-07-18

Last Modified

2026-02-24

References

https://extensions.joomla.org/extension/gallery/ https://access.redhat.com/security/cve/cve-2025-49486

Patch

https://extensions.joomla.org/extension/6gallery/