CVE Details
Basic Information
| Title | Extension – compojoom.com – Stored XSS vulnerability in CComment component 5.0.0-6.1.14 for Joomla |
|---|---|
| Type | cve |
| Published | 2025-07-23T11:16:12.527Z |
| Modified | 2025-07-23T11:16:12.527Z |
Product Information
| Vendor | compojoom.com |
|---|---|
| Product | CComment component for Joomla |
| Version | 5.0.0-6.1.14 |
CVSS Information
| Base Score | 7.0 (HIGH) |
|---|---|
| Attack Vector | CVSS:4.0/AV:N/AC:H/AT:N/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N |
AI Analysis
| AI Description | A stored XSS vulnerability was found in the CComment component for Joomla versions 5.0.0 to 6.1.14. This could allow attackers to inject malicious scripts, potentially leading to unauthorized actions on behalf of users. |
|---|---|
| AI Severity | High |
| AI Vendor | compojoom.com |
| AI Product | CComment component |
| AI Version | 5.0.0-6.1.14 |
Affected Products
- compojoom.com CComment component for Joomla 5.0.0-6.1.14
Additional Information
| CWE List | CWE-79 |
|---|---|
| Source | Joomla |
Description
A stored XSS vulnerability in CComment component 5.0.0-6.1.14 for Joomla was discovered.