Rsmediagallery Component For Joomla
Approved changes feed: RSS · Atom
cpe:2.3:a:rsjoomla.com:rsmediagallery_component_for_joomla:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Rsjoomla.Com (53bc36d9-ce21-5632-a41f-634a6cb987aa) |
|---|---|
| Product | Rsmediagallery Component For Joomla (60ffd7f3-2182-5f9f-bc7f-677b40695241) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2025-32466 |
vulnerable | 2026-06-08 07:19:00.134709 |
Extension - rsjoomla.com - SQL injection vulnerability in RSMediaGallery! component 1.7.4 - 2.1.7 for Joomla
A SQL injection vulnerability in RSMediaGallery! component 1.7.4 - 2.1.7 for Joomla was discovered. The issue occurs within the dashboard component, where user-supplied input is not properly sanitized before being stored and rendered. An attacker can inject malicious JavaScript code into text fields or other input points, which is subsequently executed in the browser of any user who clicks on the crafted text in the dashboard.
Published: 2025-06-11T19:07:34.823Z
Updated: 2025-06-12T15:18:07.358Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-27753 |
vulnerable | 2026-06-08 07:14:55.695157 |
Extension - rsjoomla.com - A SQLi vulnerability RSMediaGallery component 1.7.4 - 2.1.6 for Joomla
A SQLi vulnerability in RSMediaGallery component 1.7.4 - 2.1.6 for Joomla was discovered. The vulnerability is due to the use of unescaped user-supplied parameters in SQL queries within the dashboard component. This allows an authenticated attacker to inject malicious SQL code through unsanitized input fields, which are used directly in SQL queries. Exploiting this flaw can lead to unauthorized database access, data leakage, or modification of records.
Published: 2025-06-05T13:20:51.810Z
Updated: 2025-06-19T04:38:39.043Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.