The Joomla extension ChronoForms is vulnerable to an unauthenticated stored XSS vulnerability.
Project Subscriptions
No data.
Advisories
No advisories yet.
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
| Link | Providers |
|---|---|
| https://www.chronoengine.com/ |
|
History
Fri, 17 Jul 2026 16:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | The Joomla extension ChronoForms is vulnerable to an unauthenticated stored XSS vulnerability. | |
| Title | Joomla Extension - chronoengine.com - Stored XSS in ChronoForms extension for Joomla < 8.0.53 | |
| Weaknesses | CWE-79 | |
| References |
| |
| Metrics |
cvssV4_0
|
Projects
Sign in to view the affected projects.
Status: PUBLISHED
Assigner: Joomla
Published:
Updated: 2026-07-17T16:15:45.737Z
Reserved: 2026-06-29T14:35:29.745Z
Link: CVE-2026-58148
No data.
No data.
No data.
OpenCVE Enrichment
No data.
Weaknesses