kubik-rubik CVE Vulnerabilities & CVE List (3)

Products (CPE): — CVEs: 3

kubik-rubik vulnerability overview

Aggregates CVE and security vulnerability intelligence across all kubik-rubik-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.

Historical issues mainly involve vendor risk cross-site scripting and vendor risk path handling and related problems; some flaws may lead to vendor impact file overwrite, affecting vendor surface production workloads scenarios.

Vulnerability distribution trend (last 24 months)

Showing 13 of 3 CVEs
«« First « Prev Page 1 / 1 Next »
CVE Summary Source Max CVSS EPSS % Published Updated
CVE-2018-7717 The htmlImageAddTitleAttribute function in sige.php in the Kubik-Rubik Simple Image Gallery Extended (SIGE) extension 3.2.3 for Joomla! has XSS via a crafted image header, as demonstrated by the Caption-Abstract header object in a JPEG file. This is fixed in 3.3.1. [email protected] 6.1 0.68% 2018-03-05 2026-06-16
CVE-2017-16356 Reflected XSS in Kubik-Rubik SIGE (aka Simple Image Gallery Extended) before 3.3.0 allows attackers to execute JavaScript in a victim's browser by having them visit a plugins/content/sige/plugin_sige/print.php link with a crafted img, name, or caption parameter. [email protected] 6.1 2.23% 2018-02-20 2026-06-16
CVE-2017-2550 Vulnerability in Easy Joomla Backup v3.2.4. The software creates a copy of the backup in the web root with an easily guessable filename. [email protected] 7.5 1.17% 2017-09-08 2026-06-16
«« First « Prev Page 1 / 1 Next »
cvelogic Threat Intelligence