Joomla Latest Vulnerabilities
Latest vulnerabilities published by joomla
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Cache Poisoning Vulnerability in Pagination
CVE-2024-27185JoomlaJoomla! CmsXSS Vulnerabilities in Mail Template Feature of Unspecified Extensions
CVE-2024-27186JoomlaJoomla! CmsInvalid URL Validation Could Lead to Security Vulnerabilities
CVE-2024-27184JoomlaJoomla! CmsXSS Vulnerabilities in Image Processing Methods
CVE-2024-40743JoomlaJoomla! CmsBackend Username Overwrite Vulnerability Discovered
CVE-2024-27187JoomlaJoomla! CmsAccessiMedia Field Vulnerable to XSS Attacks Due to Inadequate Input Validation
CVE-2024-21729JoomlaJoomla! Cms6.1MEDIUMFancySelect List Field Layout Vulnerable to Self-XSS Attacks
CVE-2024-21730JoomlaJoomla! Cms5.4MEDIUMInadequate Content Filtering Leads to XSS Vulnerabilities
CVE-2024-26279JoomlaJoomla! Cms6.1MEDIUMFilter Flaw Exposes Custom Fields to Cross-Site Scripting Attacks
CVE-2024-26278JoomlaJoomla! Cms6.1MEDIUMXSS Vector in StringHelper::truncate
CVE-2024-21731JoomlaJoomla! Cms6.1MEDIUMInadequate Content Filtering Leads to XSS Vulnerabilities
CVE-2024-21726JoomlaJoomla! Cmsππ°Inadequate Escaping of Mail Addresses Leads to XSS Vulnerabilities
CVE-2024-21725JoomlaJoomla! CmsXSS Vulnerabilities in Media Selection Fields
CVE-2024-21724JoomlaJoomla! CmsMFA management system vulnerability: Sessions not properly terminated
CVE-2024-21722JoomlaJoomla! CmsInadequate URL Parsing Could Lead to Open Redirect Vulnerabilities
CVE-2024-21723JoomlaJoomla! Cms[20231101] - Core - Exposure of environment variables
CVE-2023-40626JoomlaJoomla! CmsπΎπ‘7.5HIGH[20230501] - Core - Open Redirect and XSS within the mfa select
CVE-2023-23754JoomlaJoomla! Cms6.1MEDIUM[20230502] - Core - Bruteforce prevention within the mfa screen
CVE-2023-23755JoomlaJoomla! Cms7.5HIGHUnauthorized Access to Webservice Endpoints in Joomla 4.0.0 through 4.2.7
CVE-2023-23752JoomlaJoomla! CmsπΎπ‘EPSS 93%π¦ π°5.3MEDIUM[20230101] - Core - CSRF within post-installation messages
CVE-2023-23750JoomlaJoomla! Cms6.3MEDIUM[20230102] - Core - Missing ACL checks for com_actionlogs
CVE-2023-23751JoomlaJoomla! Cms4.3MEDIUM[20221101] - Core - RXSS through reflection of user input in com_media
CVE-2022-27914JoomlaJoomla! Cms6.1MEDIUM[20221001] - Core - Debug Mode leaks full request payloads including passwords
CVE-2022-27912JoomlaJoomla! Cms5.3MEDIUM[20221002] - Core - RXSS through reflection of user input in headings
CVE-2022-27913JoomlaJoomla! Cms6.1MEDIUM[20220801] - Core - Multiple Full Path Disclosures because of missing '_JEXEC or die check'
CVE-2022-27911JoomlaJoomla! Cms5.3MEDIUM