16 matches found
EUVD-2025-25659
Malicious code in bioql PyPI...
EUVD-2025-25658
Malicious code in bioql PyPI...
CVE-2025-54300
A stored XSS vulnerability in Quantum Manager component 1.0.0-3.2.0 for Joomla was discovered. The SVG upload feature does not sanitize uploads...
CVE-2025-54301
A stored XSS vulnerability in Quantum Manager component 1.0.0-3.2.0 for Joomla was discovered. File names are not properly escaped...
CVE-2025-54301
A stored XSS vulnerability in Quantum Manager component 1.0.0-3.2.0 for Joomla was discovered. File names are not properly escaped...
CVE-2025-54300
A stored XSS vulnerability in Quantum Manager component 1.0.0-3.2.0 for Joomla was discovered. The SVG upload feature does not sanitize uploads...
CVE-2025-54300 Extension - norrnext.com - Stored XSS vulnerability in Quantum Manager component 1.0.0-3.2.0 for Joomla
A stored XSS vulnerability in Quantum Manager component 1.0.0-3.2.0 for Joomla was discovered. The SVG upload feature does not sanitize uploads...
CVE-2025-54300 Extension - norrnext.com - Stored XSS vulnerability in Quantum Manager component 1.0.0-3.2.0 for Joomla
A stored XSS vulnerability in Quantum Manager component 1.0.0-3.2.0 for Joomla was discovered. The SVG upload feature does not sanitize uploads...
CVE-2025-54300
CVE-2025-54300 affects the Quantum Manager component for Joomla, versions 1.0.0–3.2.0. The root cause is an unsanitized SVG upload mechanism that allows stored XSS. The CVSS 4.0 vector indicates Network access, high impact on confidentiality and availability, and user interaction not required but...
CVE-2025-54301 Extension - norrnext.com - Stored XSS vulnerability in Quantum Manager component 1.0.0-3.2.0 for Joomla
A stored XSS vulnerability in Quantum Manager component 1.0.0-3.2.0 for Joomla was discovered. File names are not properly escaped...
CVE-2025-54301 Extension - norrnext.com - Stored XSS vulnerability in Quantum Manager component 1.0.0-3.2.0 for Joomla
A stored XSS vulnerability in Quantum Manager component 1.0.0-3.2.0 for Joomla was discovered. File names are not properly escaped...
CVE-2025-54301
CVE-2025-54301 affects the Quantum Manager component for Joomla (versions 1.0.0–3.2.0). The vulnerability is a stored XSS caused by file names not being properly escaped, as described in multiple sources. No exploitation details are provided in the documents, and a concrete patched version is not...
Norrnext Quantum Manager component for Joomla 跨站脚本漏洞
Norrnext Quantum Manager component for Joomla is a file and media management extension from Norrnext, Inc. A cross-site scripting vulnerability exists in the Norrnext Quantum Manager component for Joomla versions 1.0.0-3.2.0, which stems from the SVG upload function not cleaning up the uploaded...
Norrnext Quantum Manager component for Joomla 跨站脚本漏洞
Norrnext Quantum Manager component for Joomla is a file and media management extension from Norrnext, Inc. A cross-site scripting vulnerability exists in the Norrnext Quantum Manager component for Joomla versions 1.0.0-3.2.0, which stems from filenames that are not properly escaped, and could lea...
PT-2025-34597 · Joomla +1 · Joomla! +1
Name of the Vulnerable Software and Affected Versions: Quantum Manager versions 1.0.0 through 3.2.0 Description: A stored cross-site scripting XSS issue was identified in the Quantum Manager component for Joomla. The SVG upload feature does not properly sanitize uploaded files, allowing for the...
PT-2025-34598 · Joomla +1 · Joomla! +1
Name of the Vulnerable Software and Affected Versions: Quantum Manager versions 1.0.0 through 3.2.0 Description: A stored cross-site scripting XSS issue exists in the Quantum Manager component for Joomla. File names are not properly escaped, which could allow for malicious code execution...