CNNVD-202508-3008 Information
Aug 25, 2025
cve
CNNVD ID
CNNVD-202508-3008
Related CVE
- CNNVD Published: 2025-08-25
Description (Chinese)
Norrnext Quantum Manager component for Joomla是美国Norrnext公司的一款文件和媒体管理扩展。 Norrnext Quantum Manager component for Joomla 1.0.0-3.2.0版本存在跨站脚本漏洞,该漏洞源于文件名未正确转义,可能导致存储型跨站脚本攻击。
Description (English)
Norrnext Quantum Manager Component for Joomla is a document and media management extension of Norrnext in the United States. Norrnext Quantum Manager Component for Joomla 1.0.0-3.2.0 has a cross-site script loophole, which stems from an incorrect change in the file name and may result in a storage-type cross-stop script attack.
Hazard Level
Medium
Vulnerability Type
跨站脚本
Affected Vendor
Norrnext
Published
2025-08-25
Last Modified
2026-02-24
References
https://norrnext.com/ https://nvd.nist.gov/vuln/detail/CVE-2025-54301