Lucene search
K

11 matches found

Joomla! Vulnerable Extensions List
Joomla! Vulnerable Extensions List
added 2026/03/16 12:0 a.m.24 views

[20260305] - Core - Arbitrary file deletion in com_joomlaupdate

Lack of input validation leads to an arbitrary file deletion vulnerability in the autoupdate server mechanism...

8.6CVSS5.9AI score0.00454EPSS
Exploits0Affected Software1
Joomla! Vulnerable Extensions List
Joomla! Vulnerable Extensions List
added 2026/03/10 12:0 a.m.8 views

[20260304] - Core - XSS vectors in various article title outputs

Lack of output escaping for article titles leads to XSS vectors in various locations...

8.4CVSS5.8AI score0.0019EPSS
Exploits0Affected Software1
GithubExploit
GithubExploit
added 2023/11/30 5:55 p.m.418 views

Exploit for Improper Access Control in Joomla Joomla\!

This is a POC for CVE-2023-23752 written in Python...

5.3CVSS6AI score0.99827EPSS
Exploits43
OpenVAS
OpenVAS
added 2022/10/26 12:0 a.m.17 views

Joomla! 4.0.0 - 4.2.3 Multiple Vulnerabilities

Joomla! is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:joomla:joomla"; ifdescription...

6.1CVSS5.6AI score0.00502EPSS
Exploits0References2
OSV
OSV
added 2022/03/30 4:15 p.m.24 views

CVE-2022-23800

An issue was discovered in Joomla! 4.0.0 through 4.1.0. Inadequate content filtering leads to XSS vulnerabilities in various components...

6.1CVSS6.1AI score
Exploits0References1
Cvelist
Cvelist
added 2022/03/30 3:20 p.m.17 views

CVE-2022-23798 [20220306] - Core - Inadequate validation of internal URLs

An issue was discovered in Joomla! 2.5.0 through 3.10.6 & 4.0.0 through 4.1.0. Inadequate validation of URLs could result into an invalid check whether an redirect URL is internal or not...

8AI score0.00566EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/03/30 12:0 a.m.2 views

PT-2022-16269 · Joomla · Joomla!

Name of the Vulnerable Software and Affected Versions: Joomla! versions 3.0.0 through 3.10.6 Joomla! versions 4.0.0 through 4.1.0 Description: An issue was discovered in Joomla! where inadequate filtering on the selected Ids in a request could result in a possible SQL injection. Recommendations:...

9.8CVSS7.7AI score0.01059EPSS
Exploits0References8
NVD
NVD
added 2021/08/24 3:15 p.m.17 views

CVE-2021-26040

An issue was discovered in Joomla! 4.0.0. The media manager does not correctly check the user's permissions before executing a file deletion command...

9.1CVSS0.00918EPSS
Exploits0References1
OSV
OSV
added 2021/08/24 3:15 p.m.13 views

CVE-2021-26040

An issue was discovered in Joomla! 4.0.0. The media manager does not correctly check the user's permissions before executing a file deletion command...

9.1CVSS6.8AI score
Exploits0References1
Prion
Prion
added 2021/08/24 3:15 p.m.13 views

Arbitrary file deletion

An issue was discovered in Joomla! 4.0.0. The media manager does not correctly check the user's permissions before executing a file deletion command...

6.4CVSS9AI score0.00918EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2021/08/24 12:0 a.m.1 views

PT-2021-16933 · Joomla · Joomla!

Name of the Vulnerable Software and Affected Versions: Joomla! version 4.0.0 Description: An issue was discovered in the media manager, which does not correctly check the user's permissions before executing a file deletion command. Recommendations: For Joomla! version 4.0.0, update to a version...

9.1CVSS6.8AI score0.00918EPSS
Exploits0References8
Rows per page
Query Builder