EIP-2026-108840

PRE-CVE

Joomla! Component Rapid-Recipe - Persistent Cross-Site Scripting

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-108840. PoCs published by Sid3^effects.

AI-analyzed exploit summary This exploit demonstrates a persistent XSS vulnerability in Joomla Rapid Recipe. The attacker can inject malicious scripts into the recipe description field, which are then executed when other users view the recipe.

Description

Joomla! Component Rapid-Recipe - Persistent Cross-Site Scripting

Exploits (1)

exploitdb WORKING POC

by Sid3^effects · textwebappsphp

https://www.exploit-db.com/exploits/14327

View Code ZIP pw:eip

This exploit demonstrates a persistent XSS vulnerability in Joomla Rapid Recipe. The attacker can inject malicious scripts into the recipe description field, which are then executed when other users view the recipe.

Classification

Working Poc 90%

Attack Type

Xss

Complexity

Trivial

Reliability

Reliable

Target: Joomla Rapid Recipe

Auth required

Prerequisites: User registration · Access to 'ADD RECIPE' option

MITRE ATT&CK

T1059.007 - JavaScript

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026