8 matches found
EUVD-2025-21873
Malicious code in bioql PyPI...
CVE-2025-49486
A stored XSS vulnerability in the Balbooa Gallery plugin 1.0.0-2.4.0 for Joomla allows privileged users to store malicious scripts in gallery items...
CVE-2025-49486
A stored XSS vulnerability in the Balbooa Gallery plugin 1.0.0-2.4.0 for Joomla allows privileged users to store malicious scripts in gallery items...
CVE-2025-49486
The CVE-2025-49486 entry covers a stored XSS vulnerability in Balbooa Gallery for Joomla, affecting versions 1.0.0 through 2.4.0. The flaw allows privileged users to inject scripts into gallery items, with CVSS 4.0 vector yielding a base score of 8.6 (HIGH) and impact on confidentiality, integrit...
CVE-2025-49486 Extension - balbooa.com - Stored XSS in Balbooa Gallery component version 1.0.0 - 2.4.0 for Joomla
A stored XSS vulnerability in the Balbooa Gallery plugin 1.0.0-2.4.0 for Joomla allows privileged users to store malicious scripts in gallery items...
CVE-2025-49486 Extension - balbooa.com - Stored XSS in Balbooa Gallery component version 1.0.0 - 2.4.0 for Joomla
A stored XSS vulnerability in the Balbooa Gallery plugin 1.0.0-2.4.0 for Joomla allows privileged users to store malicious scripts in gallery items...
PT-2025-30023 · WordPress · Balbooa Gallery
Name of the Vulnerable Software and Affected Versions: Balbooa Gallery plugin versions 1.0.0 through 2.4.0 Description: A stored cross-site scripting XSS issue exists in the Balbooa Gallery plugin for Joomla. Privileged users can store malicious scripts within gallery items. Recommendations: Upda...
Balbooa Gallery 跨站脚本漏洞
Balbooa Gallery is a Joomla extension from Balbooa Inc. A cross-site scripting vulnerability exists in Balbooa Gallery versions 1.0.0-2.4.0, which stems from a stored cross-site scripting attack...