CVE-2025-55757
A unauthenticated reflected XSS exists in VirtueMart versions 1.0.0 through 4.4.10 for Joomla. The issue arises from an input-output handling flaw that allows script injection and execution in the context of the victim’s browser when viewing vulnerable pages. Affected component: VirtueMart core p...