3 matches found
CVE-2025-54300
CVE-2025-54300 affects the Quantum Manager component for Joomla, versions 1.0.0–3.2.0. The root cause is an unsanitized SVG upload mechanism that allows stored XSS. The CVSS 4.0 vector indicates Network access, high impact on confidentiality and availability, and user interaction not required but...
CVE-2025-54301 Extension - norrnext.com - Stored XSS vulnerability in Quantum Manager component 1.0.0-3.2.0 for Joomla
A stored XSS vulnerability in Quantum Manager component 1.0.0-3.2.0 for Joomla was discovered. File names are not properly escaped...
CVE-2025-54301
CVE-2025-54301 affects the Quantum Manager component for Joomla (versions 1.0.0–3.2.0). The vulnerability is a stored XSS caused by file names not being properly escaped, as described in multiple sources. No exploitation details are provided in the documents, and a concrete patched version is not...