CVE-2025-32466 – RSMediaGallery Joomla SQL Injection Vulnerability

June 11, 2025

CVE ID : CVE-2025-32466

Published : June 11, 2025, 8:15 p.m. | 5 hours, 19 minutes ago

Description : A SQL injection vulnerability in RSMediaGallery! component 1.7.4 – 2.1.7 for Joomla was discovered. The issue occurs within the dashboard component, where user-supplied input is not properly sanitized before being stored and rendered. An attacker can inject malicious JavaScript code into text fields or other input points, which is subsequently executed in the browser of any user who clicks on the crafted text in the dashboard.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-32465 – Joomla RSTickets! Stored XSS Vulnerability

Next Article CVE-2025-30085 – RSForm!pro Joomla Remote Code Execution Vulnerability

How To Prevent WordPress SQL Injection Attacks

Java never goes out of style: Celebrating 30 years of the language

OpenAI o3-pro available in the API, BrowserStack adds Playwright support for real iOS devices, and more – Daily News Digest

Creating The “Moving Highlight” Navigation Bar With JavaScript And CSS

Surface Pro 11 with Snapdragon X Elite drops to lowest price ever

With WH40K Boltgun and Dungeons of Hinterberg, this month’s Humble Choice lineup is stacked for less than $12

I’ve been loving the upgrade to my favorite mobile controller, and there’s even a version for large tablets

Copilot Vision just launched — and Microsoft already added new features

Master Data Management: The Key to Improved Analytics Reporting

Master Data Management: The Key to Improved Analytics Reporting

Salesforce Lead-to-Revenue Management

React Native 0.80 – React 19.1, JS API Changes, Freezing Legacy Arch and much more

Surface Pro 11 with Snapdragon X Elite drops to lowest price ever

Surface Pro 11 with Snapdragon X Elite drops to lowest price ever

With WH40K Boltgun and Dungeons of Hinterberg, this month’s Humble Choice lineup is stacked for less than $12

I’ve been loving the upgrade to my favorite mobile controller, and there’s even a version for large tablets

CVE-2025-32466 – RSMediaGallery Joomla SQL Injection Vulnerability

Apache Tomcat Under Attack: Massive Brute-Force Campaign Targets Manager Interfaces

Warning: Discontinued Amazon Cloud Cam Has Vulnerability (CVE-2025-6031), Exposing Your Network

OpenAI acquires Jony Ive’s startup for whopping $6.5 billion all-stock deal

Multimodal AI poses new safety risks, creates CSEM and weapons info

Rhino Linux presenta il nuovo ambiente desktop UBXI basato su KDE e il gestore pacchetti RPK2

CVE-2025-3634 – Moodle Authentication Bypass

How To Launch Big Complex Projects

Scaling up learning across many different robot types

CVE-2025-45862 – TOTOLINK A3002R Buffer Overflow Vulnerability

CVE-2025-37088 – HPE Cray Data Virtualization Service (DVS) Authentication Bypass Vulnerability

CVE-2025-32466 – RSMediaGallery Joomla SQL Injection Vulnerability

Related Posts