Affected Products

Vendor / product matrix with CVE counts sourced from the CPE catalog.

Export CSV

Products

1 vendor
VendorProductsCVEsKEVAvg EPSSWorst Severity
stackideas
15027.4%CRITICAL

Related CVEs

5
CVE IDDescriptionSeverityCVSSKEVEPSSPublished
CVE-2026-21626Access control settings for forum post custom fields are not applied to the JSON output type, leading to an ACL violation vector an information disclosureCRITICAL9.228.7%Feb 6, 2026
CVE-2026-21625User provided uploads to the Easy Discuss component for Joomla aren't properly validated. Uploads are purely checked by file extensions, no mime type checks are happening.MEDIUM4.826.6%Jan 16, 2026
CVE-2026-21624Lack of input filterung leads to a persistent XSS vulnerability in the user avatar text handling of the Easy Discuss component for Joomla.CRITICAL9.47.4%Jan 16, 2026
CVE-2026-21623Lack of input filterung leads to a persistent XSS vulnerability in the forum post handling of the Easy Discuss component for Joomla.CRITICAL9.47.4%Jan 16, 2026
CVE-2023-51810SQL injection vulnerability in StackIdeas EasyDiscuss v.5.0.5 and fixed in v.5.0.10 allows a remote attacker to obtain sensitive information via a crafted request to the search parameter in the Users module.HIGH7.567.1%Jan 16, 2024