Filter
AND
Joomla[20201104] - Core - SQL injection in com_users list view
9.8
First published (updated )
JoomlaIn Joomla! before 3.8.0, inadequate escaping in the LDAP authentication plugin can result in a discl…
9.8
First published (updated )
Joomla[20220305] - Core - Inadequate filtering on the selected Ids
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
JoomlaThe CMS installer in Joomla! before 3.7.4 does not verify a user's ownership of a webspace, which al…
8.8
First published (updated )
Oracle Application Testing SuiteXSS, Input Validation
7.5
First published (updated )
composer/joomla/archive[20220301] - Core - Zip Slip within the Tar extractor
7.5
First published (updated )
JoomlaJoomla! CMS 2.5.x before 2.5.19 and 3.x before 3.2.3 allows remote attackers to authenticate and byp…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
JoomlaAkeeba Restore (restore.php), as used in Joomla! 2.5.4 through 2.5.25, 3.x through 3.2.5, and 3.3.0 …
7.5
First published (updated )
Joomla[20210306] - Core - com_media allowed paths that are not intended for image uploads
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Joomla[20210503] - Core - CSRF in data download endpoints
6.5
First published (updated )
Joomla[20210502] - Core - CSRF in AJAX reordering endpoint
6.5
First published (updated )
Joomla[20240704] - Core - XSS in Wrapper extensions
6.1
First published (updated )
Joomla[20240703] - Core - XSS in StringHelper::truncate method
6.1
First published (updated )
Joomla[20210401] - Core - Escape xss in logo parameter error pages
6.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
JoomlaOpen redirect vulnerability in Joomla! CMS 3.0.0 through 3.4.1.
6.1
First published (updated )
Joomla[20210705] - Core - XSS in com_media imagelist
6.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Joomla[20210501] - Core - Adding HTML to the executable block list of MediaHelper::canUpload
6.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.