Extension – nobossextensions.com – Stored XSS vulnerability in No Boss Testimonials component 1.0.0-3.0.0 and 4.0.0-4.0.2 for Joomla

July 28, 2025 invoker category_cve

CVE Details

Basic Information

Title Extension – nobossextensions.com – Stored XSS vulnerability in No Boss Testimonials component 1.0.0-3.0.0 and 4.0.0-4.0.2 for Joomla
Type cve
Published 2025-07-28T17:30:00.460Z
Modified 2025-07-28T17:30:00.460Z

Product Information

Vendor nobossextensions.com
Product No Boss Testimonials component for Joomla
Version 4.0.0-4.0.2

CVSS Information

Base Score 9.4 (CRITICAL)
Attack Vector CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:N/SC:H/SI:H/SA:H

Affected Products

  • nobossextensions.com No Boss Testimonials component for Joomla 4.0.0-4.0.2
  • nobossextensions.com No Boss Testimonials component for Joomla 1.0.0-3.0.0

Additional Information

CWE List CWE-79
Source Joomla

Description

A stored XSS vulnerability in No Boss Testimonials component 1.0.0-3.0.0 and 4.0.0-4.0.2 for Joomla was discovered.

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.