CVE-2026-21625

Published: Jan 16, 2026

Modified: Jan 16, 2026

PUBLISHED

Description

User provided uploads to the Easy Discuss component for Joomla aren't properly validated. Uploads are purely checked by file extensions, no mime type checks are happening.

Vendor	Product	Versions
Stackideas.com	EasyDiscuss extension for Joomla	affected `1.0.0-5.0.15`

Weaknesses (CWE)

CWE-434

References

https://stackideas.com/easydiscuss

product

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2026-21625

Description

Affected Products

Weaknesses (CWE)

References