Lucene search
K

44 matches found

NVD
NVD
added last week8 views

CVE-2026-48948

An improper access check allows user to download vcard exports of comcontact contacts that are inaccessible...

8.8CVSS0.0024EPSS
Exploits0References1
EUVD
EUVD
added last week6 views

EUVD-2026-42061

An improper access check allows user to download vcard exports of comcontact contacts that are inaccessible...

6.4CVSS6AI score0.0024EPSS
Exploits0References1
Cvelist
Cvelist
added last week32 views

CVE-2026-48948 Joomla! Core - [20260702] - Incorrect Access Control in com_contact vcf download

An improper access check allows user to download vcard exports of comcontact contacts that are inaccessible...

6.4CVSS0.0024EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-15827

Malware in sbrugna...

6.1CVSS6.1AI score0.00754EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/22 9:49 a.m.21 views

CVE-2011-2509

Multiple cross-site scripting XSS vulnerabilities in Joomla! before 1.6.4 allow remote attackers to inject arbitrary web script or HTML via 1 the query string to the comcontact component, as demonstrated by the Itemid parameter to index.php; 2 the query string to the comcontent component, as...

4.3CVSS5.8AI score0.01089EPSS
Exploits2References1
OpenVAS
OpenVAS
added 2019/08/16 12:0 a.m.161 views

Joomla! < 3.9.11 Mail Submission Vulnerability

Joomla! is prone to inadequate checks in comcontact which could allow mail submission in disabled forms. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

5.3CVSS5.5AI score0.00975EPSS
Exploits0References1
OSV
OSV
added 2019/08/14 4:15 a.m.20 views

CVE-2019-15028

In Joomla! before 3.9.11, inadequate checks in comcontact could allow mail submission in disabled forms...

5.3CVSS6.8AI score
Exploits0References1
NVD
NVD
added 2019/08/14 4:15 a.m.21 views

CVE-2019-15028

In Joomla! before 3.9.11, inadequate checks in comcontact could allow mail submission in disabled forms...

5.3CVSS5.2AI score0.00975EPSS
Exploits0References1
Prion
Prion
added 2019/08/14 4:15 a.m.14 views

Design/Logic Flaw

In Joomla! before 3.9.11, inadequate checks in comcontact could allow mail submission in disabled forms...

5CVSS5.3AI score0.00975EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2019/08/14 3:57 a.m.140 views

CVE-2019-15028

CVE-2019-15028 affects Joomla! core prior to 3.9.11, where inadequate checks in the com_contact component can allow mail submission through disabled forms. Multiple connected sources confirm the issue as an improper access-control/validation problem in com_contact, enabling a remote attacker to s...

5.3CVSS5.2AI score0.00975EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/08/14 3:57 a.m.26 views

CVE-2019-15028

In Joomla! before 3.9.11, inadequate checks in comcontact could allow mail submission in disabled forms...

5.2AI score0.00975EPSS
Exploits0References1
Joomla! Vulnerable Extensions List
Joomla! Vulnerable Extensions List
added 2019/04/09 12:0 a.m.69 views

[20190801] - Core - Hardening com_contact contact form

Inadequate checks in comcontact could allowed mail submission in disabled forms...

5.3CVSS1.5AI score0.00975EPSS
Exploits0Affected Software1
Prion
Prion
added 2019/01/16 8:29 a.m.11 views

Cross site scripting

An issue was discovered in Joomla! before 3.9.2. Inadequate escaping in comcontact leads to a stored XSS vulnerability...

4.3CVSS5.8AI score0.00754EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2019/01/16 8:29 a.m.16 views

CVE-2019-6261

An issue was discovered in Joomla! before 3.9.2. Inadequate escaping in comcontact leads to a stored XSS vulnerability...

6.1CVSS5.9AI score0.00754EPSS
Exploits0References2
OSV
OSV
added 2019/01/16 8:29 a.m.14 views

CVE-2019-6261

An issue was discovered in Joomla! before 3.9.2. Inadequate escaping in comcontact leads to a stored XSS vulnerability...

6.1CVSS5.6AI score
Exploits0References2
Cvelist
Cvelist
added 2019/01/16 7:0 a.m.22 views

CVE-2019-6261

An issue was discovered in Joomla! before 3.9.2. Inadequate escaping in comcontact leads to a stored XSS vulnerability...

5.9AI score0.00754EPSS
Exploits0References2
CNVD
CNVD
added 2019/01/16 12:0 a.m.4 views

Joomla! cross-site scripting vulnerability (CNVD-2019-14554)

Joomla! is a globally recognized content management system developed using PHP language and MySQL database, which can be implemented on various platforms such as Linux, Windows, MacOSX and so on. A cross-site scripting vulnerability exists in comcontact in Joomla! versions 2.5.0 through 3.9.1,...

6.1CVSS6.2AI score0.00754EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2019/01/16 12:0 a.m.31 views

Joomla! 2.5.x < 3.9.2 Multiple Vulnerabilities

According to its self-reported version number, the detected Joomla! application is affected by multiple vulnerabilities : - Stored XSS in modbanners affects Joomla 2.5.0 through 3.9.1 - Stored XSS in comcontact affects Joomla 2.5.0 through 3.9.1 - Stored XSS issue in the Global Configuration...

6.1CVSS6.5AI score0.035EPSS
Exploits5References9
Joomla! Vulnerable Extensions List
Joomla! Vulnerable Extensions List
added 2018/12/04 12:0 a.m.46 views

[20190102] - Core - Stored XSS in com_contact

Inadequate escaping in comcontact leads to a stored XSS vulnerability...

6.1CVSS5.7AI score0.00754EPSS
Exploits0Affected Software1
FreeBSD
FreeBSD
added 2018/12/01 12:0 a.m.39 views

joomla3 -- vulnerabilitiesw

JSST reports: Inadequate escaping in modbanners leads to a stored XSS vulnerability. Inadequate escaping in comcontact leads to a stored XSS vulnerability Inadequate checks at the Global Configuration Text Filter settings allowed a stored XSS. Inadequate checks at the Global Configuration helpurl...

6.1CVSS0.7AI score0.035EPSS
Exploits5References4
Rows per page
Query Builder