CVE-2025-49468 | nobossextensions No Boss Calendar Component up to 5.0.6 on Joomla id_module sql injection

Inserito da Angelo Barbosa | Giu 13, 2025 | CVE

A vulnerability classified as critical has been found in nobossextensions No Boss Calendar Component up to 5.0.6 on Joomla. This affects an unknown part. The manipulation of the argument id_module leads to sql injection.

This vulnerability is uniquely identified as CVE-2025-49468. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-49468 | nobossextensions No Boss Calendar Component up to 5.0.6 on Joomla id_module sql injection

Post correlati

CVE-2024-41348 | openflights 5234b5b php/alsearch.php cross site scripting

CVE-2024-56522 | tecnick tcpdf up to 6.7.x Tag Hash unserializeTCPDFtag comparison

CVE-2023-52208 | Constant Contact Forms Plugin up to 2.4.2 on WordPress information disclosure

CVE-2024-7717 | WP Events Manager Plugin up to 2.1.11 on WordPress sql injection