Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-2666

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.00493EPSS
Exploits0References1
NVD
NVD
added 2025/02/04 8:15 a.m.25 views

CVE-2025-22205

Improper handling of input variables lead to multiple path traversal vulnerabilities in the Admiror Gallery extension for Joomla in version branch 4.x...

7.5CVSS0.00493EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/02/01 9:12 p.m.15 views

CVE-2023-23750 [20230101] - Core - CSRF within post-installation messages

An issue was discovered in Joomla! 4.0.0 through 4.2.6. A missing token check causes a CSRF vulnerability in the handling of post-installation messages...

6.5AI score0.0023EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2022/11/09 12:0 a.m.30 views

Joomla! 4.x < 4.2.5 Cross-Site Scripting

According to its self-reported version, the instance of Joomla! running on the remote web server is 4.x prior to 4.2.5. It is, therefore, affected by a Cross-Site Scripting XSS due to inadequate filtering of potentially malicious user input in commedia. Note that the scanner has not tested for...

6.1CVSS6.3AI score0.00455EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2022/10/26 12:0 a.m.39 views

Joomla! 4.x < 4.2.4 Multiple Vulnerabilities

According to its self-reported version, the instance of Joomla! running on the remote web server is 4.x prior to 4.2.4. It is, therefore, affected by multiple vulnerabilities. - Disclosure of critical information in debug mode. CVE-2022-27912 - Cross-Site Scripting XSS through reflection of user...

6.1CVSS5.7AI score0.00502EPSS
Exploits0References5
NVD
NVD
added 2022/03/30 4:15 p.m.13 views

CVE-2022-23801

An issue was discovered in Joomla! 4.0.0 through 4.1.0. Possible XSS atack vector through SVG embedding in commedia...

6.1CVSS0.00565EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2021/09/07 12:0 a.m.21 views

Joomla! 4.x < 4.0.1 Insufficient Access Control

According to its self-reported version, the instance of Joomla! running on the remote web server is 4.0 prior to 4.0.1. It is, therefore, affected by an insufficient access control vulnerability on its commedia deletion endpoint. An unauthenticated, remote attacker could exploit this to delete...

9.1CVSS7.5AI score0.00918EPSS
Exploits0References3
Rows per page
Query Builder