Filter
AND
JoomlaAn issue was discovered in Joomla! before 3.9.3. The "No Filtering" textfilter overrides child setti…
6.1
First published (updated )
composer/joomla/joomla-cmsAn issue was discovered in Joomla! before 3.9.3. The phar:// stream wrapper can be used for object i…
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Joomla[20210703] - Core - Lack of enforced session termination
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Joomla[20210704] - Core - Privilege escalation through com_installer
7.5
First published (updated )
Joomla[20210304] - Core - XSS within the feed parser library
6.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Joomla[20201101] - Core - com_finder ignores access levels on autosuggest
7.5
First published (updated )
JoomlaJoomla! 2.5.x before 2.5.10 and 3.0.x before 3.0.4 allows remote authenticated users to bypass inten…
First published (updated )
JoomlaUnspecified vulnerability in Joomla! 1.7.x before 1.7.5 and 2.5.x before 2.5.1 allows attackers to o…
First published (updated )
Joomla[20210303] - Core - XSS within alert messages showed to users
6.1
First published (updated )
Joomla[20220306] - Core - Inadequate validation of internal URLs
6.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
JoomlaJoomla! 2.5.x before 2.5.10 and 3.0.x before 3.0.4 allows remote authenticated users to bypass inten…
First published (updated )
Joomla[20210702] - Core - DoS through usergroup table manipulation
7.5
First published (updated )
Joomla[20201102] - Core - Disclosure of secrets in Global Configuration page
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Joomla[20220303] - Core - User row are not bound to a authentication mechanism
9.8
First published (updated )
JoomlaJoomla! 2.5.x before 2.5.8 and 3.0.x before 3.0.2 allows remote attackers to conduct clickjacking at…
4.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.