Lucene search
+L

15 matches found

OSV
OSV
added 2025/04/03 2:15 p.m.10 views

BIT-JOOMLA-2023-23751 [20230102] - Core - Missing ACL checks for com_actionlogs

An issue was discovered in Joomla! 4.0.0 through 4.2.4. A missing ACL check allows non super-admin users to access comactionlogs...

4.3CVSS4.8AI score0.00444EPSS
Exploits0References2
OSV
OSV
added 2025/04/03 2:11 p.m.5 views

BIT-JOOMLA-2020-8421

An issue was discovered in Joomla! before 3.9.15. Inadequate escaping of usernames allows XSS attacks in comactionlogs...

6.1CVSS6.1AI score0.01181EPSS
Exploits0References2
NVD
NVD
added 2023/02/01 10:15 p.m.12 views

CVE-2023-23751

An issue was discovered in Joomla! 4.0.0 through 4.2.4. A missing ACL check allows non super-admin users to access comactionlogs...

4.3CVSS4.5AI score0.00444EPSS
Exploits0References1
OSV
OSV
added 2023/02/01 10:15 p.m.18 views

CVE-2023-23751

An issue was discovered in Joomla! 4.0.0 through 4.2.4. A missing ACL check allows non super-admin users to access comactionlogs...

4.3CVSS6.7AI score
Exploits0References1
Prion
Prion
added 2023/02/01 10:15 p.m.27 views

Design/Logic Flaw

An issue was discovered in Joomla! 4.0.0 through 4.2.4. A missing ACL check allows non super-admin users to access comactionlogs...

4CVSS4.5AI score0.00444EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/02/01 9:12 p.m.16 views

CVE-2023-23751 [20230102] - Core - Missing ACL checks for com_actionlogs

An issue was discovered in Joomla! 4.0.0 through 4.2.4. A missing ACL check allows non super-admin users to access comactionlogs...

5.1AI score0.00444EPSS
Exploits0References1
Joomla! Vulnerable Extensions List
Joomla! Vulnerable Extensions List
added 2023/01/01 12:0 a.m.36 views

[20230102] - Core - Missing ACL checks for com_actionlogs

A missing ACL check allows non super-admin users to access comactionlogs...

4.3CVSS5.9AI score0.00444EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2020/01/29 12:0 a.m.61 views

Joomla! 3.9.0 - 3.9.14 XSS Vulnerability

Joomla! is prone to a cross-site scripting vulnerability. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:joomla:joomla";...

6.1CVSS5.8AI score0.01181EPSS
Exploits0References1
NVD
NVD
added 2020/01/28 9:15 p.m.26 views

CVE-2020-8421

An issue was discovered in Joomla! before 3.9.15. Inadequate escaping of usernames allows XSS attacks in comactionlogs...

6.1CVSS6.6AI score0.01181EPSS
Exploits0References1
OSV
OSV
added 2020/01/28 9:15 p.m.18 views

CVE-2020-8421

An issue was discovered in Joomla! before 3.9.15. Inadequate escaping of usernames allows XSS attacks in comactionlogs...

6.1CVSS5.9AI score
Exploits0References1
Prion
Prion
added 2020/01/28 9:15 p.m.13 views

Cross site scripting

An issue was discovered in Joomla! before 3.9.15. Inadequate escaping of usernames allows XSS attacks in comactionlogs...

4.3CVSS5.9AI score0.01181EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/01/28 8:58 p.m.158 views

CVE-2020-8421

CVE-2020-8421 affects Joomla! core prior to 3.9.15, specifically the com_actionlogs component. The issue is described as inadequate escaping of usernames, which enables cross-site scripting (XSS) attacks. The vulnerability is present in Joomla! 3.x up to version 3.9.14, with a fix introduced in 3...

6.1CVSS6.1AI score0.01181EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/01/28 8:58 p.m.29 views

CVE-2020-8421

An issue was discovered in Joomla! before 3.9.15. Inadequate escaping of usernames allows XSS attacks in comactionlogs...

6.6AI score0.01181EPSS
Exploits0References1
Joomla! Vulnerable Extensions List
Joomla! Vulnerable Extensions List
added 2019/12/25 12:0 a.m.47 views

[20200103] - Core - XSS in com_actionlogs

Inadequate escaping of usernames allow XSS attacks in comactionlogs...

6.1CVSS6.9AI score0.01181EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/06/14 12:0 a.m.47 views

Joomla 3.6.x < 3.9.7 Multiple Vulnerabilites

According to its self-reported version, the instance of Joomla! running on the remote web server is 3.6.x prior to 3.9.7. It is, therefore, affected by the following vulnerabilities: - Joomla versions 3.8.13 prior to 3.9.7 are affected by a vulnerability where a non-admin user may manipulate the...

9.8CVSS7AI score0.1049EPSS
Exploits1References5
Rows per page
Query Builder