Filter
AND

JoomlaIn Joomla! before 3.8.2, a bug allowed third parties to bypass a user's 2-factor authentication meth…

critical
9.8
First published (updated )
CVE-2017-16634

JoomlaIn Joomla! before 3.8.0, inadequate escaping in the LDAP authentication plugin can result in a discl…

critical
9.8
First published (updated )
CVE-2017-14596

Joomla[20210302] - Core - Potential Insecure FOFEncryptRandval

critical
9.1
First published (updated )
CVE-2021-23128

Joomla[20210301] - Core - Insecure randomness within 2FA secret generation

critical
9.1
First published (updated )
CVE-2021-23127

JoomlaThe CMS installer in Joomla! before 3.7.4 does not verify a user's ownership of a webspace, which al…

high
8.8
First published (updated )
CVE-2017-11364

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

JoomlaCSRF

high
8.8
First published (updated )
CVE-2019-18650

JoomlaCSRF

high
8.8
First published (updated )
CVE-2020-10241

JoomlaJoomla! CMS 2.5.x before 2.5.19 and 3.x before 3.2.3 allows remote attackers to authenticate and byp…

high
7.5
First published (updated )
CVE-2014-7984

JoomlaSQL Injection

high
7.5
First published (updated )
CVE-2014-7981

JoomlaJoomla! 2.5.x before 2.5.25, 3.x before 3.2.4, and 3.3.x before 3.3.4 allows remote attackers to aut…

high
7.5
First published (updated )
CVE-2014-6632

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

JoomlaAkeeba Restore (restore.php), as used in Joomla! 2.5.4 through 2.5.25, 3.x through 3.2.5, and 3.3.0 …

high
7.5
First published (updated )
CVE-2014-7228

JoomlaSQL Injection

high
7.5
First published (updated )
CVE-2015-7857

JoomlaSQL Injection

high
7.5
First published (updated )
CVE-2015-7858

JoomlaSQL Injection

high
7.5
First published (updated )
CVE-2015-7297

JoomlaInput Validation, Path Traversal

high
7.5
First published (updated )
CVE-2015-8565

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Joomla joomla\!Input Validation

high
7.5
First published (updated )
CVE-2015-8562

JoomlaSQL Injection

high
7.5
First published (updated )
CVE-2015-8769

JoomlaAn issue was discovered in Joomla! before 3.9.5. The "refresh list of helpsites" endpoint of com_use…

high
7.5
First published (updated )
CVE-2019-10946

Joomla[20210305] - Core - Input validation within the template manager

high
7.5
First published (updated )
CVE-2021-23131

JoomlaCSRF

medium
6.8
First published (updated )
CVE-2015-5397

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

JoomlaCSRF

medium
6.8
First published (updated )
CVE-2015-8563

JoomlaMalicious File Upload

medium
6.5
First published (updated )
CVE-2017-7989

JoomlaXSS

medium
6.1
First published (updated )
CVE-2017-11612

JoomlaXSS

medium
6.1
First published (updated )
CVE-2017-7986

JoomlaXSS

medium
6.1
First published (updated )
CVE-2017-7987

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

JoomlaXSS

medium
6.1
First published (updated )
CVE-2017-7984

JoomlaOpen redirect vulnerability in Joomla! CMS 3.0.0 through 3.4.1.

medium
6.1
First published (updated )
CVE-2015-5608

JoomlaXSS, Input Validation

medium
6.1
First published (updated )
CVE-2019-9712

JoomlaIn Joomla! 1.6.0 through 3.6.5 (fixed in 3.7.0), inadequate filtering of form contents allows overwr…

medium
5.3
First published (updated )
CVE-2017-7988

JoomlaInfoleak

medium
5.3
First published (updated )
CVE-2017-7983

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203