Phoca: Security Vulnerabilities
Various stored XSS vulnerabilities in the maps- and icon rendering logic in Phoca Maps component 5.0.0-6.0.2 have been discovered.
CVSS Score
6.5
EPSS Score
0.0
Published
2026-04-11
SQL injection vulnerability in the Phoca Documentation (com_phocadocumentation) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a section action to index.php.
CVSS Score
7.5
EPSS Score
0.005
Published
2009-02-23