Filter
AND
Oracle Application Testing SuiteXSS, Input Validation
7.5
First published (updated )
Joomla[20210306] - Core - com_media allowed paths that are not intended for image uploads
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
composer/joomla/filesystem[20220302] - Core - Path Disclosure within filesystem error messages
5.3
First published (updated )
Joomla[20210503] - Core - CSRF in data download endpoints
6.5
First published (updated )
Joomla[20210402] - Core - Inadequate filters on module layout settings
5.3
First published (updated )
JoomlaJoomla! 2.5.x before 2.5.10 and 3.0.x before 3.0.4 allows remote authenticated users to bypass inten…
First published (updated )
Joomla[20210307] - Core - ACL violation within com_content frontend editing
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
composer/joomla/archive[20220301] - Core - Zip Slip within the Tar extractor
7.5
First published (updated )
composer/joomla/archive[20210308] - Core - Path Traversal within joomla/archive zip class
5.5
First published (updated )
Joomla[20201104] - Core - SQL injection in com_users list view
9.8
First published (updated )
Joomla[20210401] - Core - Escape xss in logo parameter error pages
6.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
JoomlaJoomla! 2.5.x before 2.5.10 and 3.0.x before 3.0.4 allows remote authenticated users to bypass inten…
First published (updated )
Joomla[20210101] - Core - com_modules exposes module names
5.3
First published (updated )
Joomla[20210705] - Core - XSS in com_media imagelist
6.1
First published (updated )
Joomla[20240703] - Core - XSS in StringHelper::truncate method
6.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
JoomlaJoomla! CMS 2.5.x before 2.5.19 and 3.x before 3.2.3 allows remote attackers to authenticate and byp…
7.5
First published (updated )
JoomlaAkeeba Restore (restore.php), as used in Joomla! 2.5.4 through 2.5.25, 3.x through 3.2.5, and 3.3.0 …
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
JoomlaOpen redirect vulnerability in Joomla! CMS 3.0.0 through 3.4.1.
6.1
First published (updated )
JoomlaIn Joomla! before 3.8.0, inadequate escaping in the LDAP authentication plugin can result in a discl…
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.