27 matches found
CVE-2026-48950
Lack of escaping leads to an XSS vulnerability in the file management view of comtemplates...
EUVD-2026-42067
Lack of escaping leads to an XSS vulnerability in the file management view of comtemplates...
CVE-2026-48950 Joomla! Core - [20260704] - XSS in com_templates
Lack of escaping leads to an XSS vulnerability in the file management view of comtemplates...
[20260704] - Core - XSS in com_templates
Lack of escaping leads to an XSS vulnerability in the file management view of comtemplates...
EUVD-2020-2693
Malware in sbrugna...
EUVD-2020-2696
Malware in sbrugna...
BIT-JOOMLA-2020-10241
An issue was discovered in Joomla! before 3.9.16. Missing token checks in the image actions of comtemplates lead to CSRF...
BIT-JOOMLA-2020-10238
An issue was discovered in Joomla! before 3.9.16. Various actions in comtemplates lack the required ACL checks, leading to various potential attack vectors...
Joomla! 3.2.0 - 3.9.15 CSRF Vulnerability
Joomla! is prone to a cross-site request forgery CSRF vulnerability. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
CVE-2020-10238
An issue was discovered in Joomla! before 3.9.16. Various actions in comtemplates lack the required ACL checks, leading to various potential attack vectors...
CVE-2020-10241
An issue was discovered in Joomla! before 3.9.16. Missing token checks in the image actions of comtemplates lead to CSRF...
CVE-2020-10238
An issue was discovered in Joomla! before 3.9.16. Various actions in comtemplates lack the required ACL checks, leading to various potential attack vectors...
Cross site request forgery (csrf)
An issue was discovered in Joomla! before 3.9.16. Missing token checks in the image actions of comtemplates lead to CSRF...
Design/Logic Flaw
An issue was discovered in Joomla! before 3.9.16. Various actions in comtemplates lack the required ACL checks, leading to various potential attack vectors...
CVE-2020-10241
CVE-2020-10241 affects Joomla! before 3.9.16. The issue is missing token checks in the image actions of com_templates, enabling CSRF. CVSS details from NVD indicate a Network attack vector, high impact on confidentiality, integrity, and availability (base 3.1 score 8.8; required user interaction)...
CVE-2020-10238
An issue was discovered in Joomla! before 3.9.16. Various actions in comtemplates lack the required ACL checks, leading to various potential attack vectors...
CVE-2020-10238
Joomla! before 3.9.16 is vulnerable due to missing ACL checks in com_templates, enabling multiple attack vectors. The CVE-2020-10238 description and multiple advisories (NVD/NVDC OSV) confirm exploitation could allow unauthorized actions on affected sites. Affected software: Joomla! core componen...
[20200301] - Core - CSRF in com_templates image actions
Missing token checks in the image actions of comtemplates causes CSRF vulnerabilities...
[20200303] - Core - Incorrect Access Control in com_templates
Various actions in comtemplates lack the required ACL checks, leading to various potential attack vectors...
CVE-2020-8420
An issue was discovered in Joomla! before 3.9.15. A missing CSRF token check in the LESS compiler of comtemplates causes a CSRF vulnerability...