CVE-2025-54300

Publication date

2025-08-25 06:54:47

Family

Joomla

State

PUBLISHED

Description

A stored XSS vulnerability in Quantum Manager component 1.0.0-3.2.0 for Joomla was discovered. The SVG upload feature does not sanitize uploads.