Joomla! CMS 跨站脚本漏洞

Joomla! CMS is a content management system developed under the open source Joomla! framework. Joomla! CMS has a cross-site scripting vulnerability, which stems from the lack of output escaping. This vulnerability may lead to cross-site scripting attacks through the "readmore" link in the comconte...

Joomla! CMS 安全漏洞

Joomla! CMS is a content management system developed under the open source Joomla! framework. There is a security vulnerability in Joomla! CMS, which stems from the InputFilter::getInstance method omitting secure-sensitive parameters from the instance cache key...

Exploit for OS Command Injection in Gnu Bash

AppAssault Lab — Attacking Common Applications ╔═════...

[20260306] - Core - Improper access check in webservice endpoints

An improper access check allows unauthorized access to webservice endpoints...

Joomla! CMS vulnerable to cross-site scripting

Overview Joomla! CMS provided by Joomla! Project contains the following vulnerability. Cross-site scripting CWE-79 - CVE-2025-63082 Sho Sugiyama of SUZUKI MOTOR CORPORATION reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning...

EUVD-2014-7832

Malware in sbrugna...

EUVD-2014-7831

Malware in sbrugna...

EUVD-2015-5561

Malware in sbrugna...

EUVD-2016-10636

Malware in sbrugna...

EUVD-2017-18844

Malware in sbrugna...

CVE-2014-7983

Cross-site scripting XSS vulnerability in comcontact in Joomla! CMS 3.1.2 through 3.2.x before 3.2.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2014-7981

SQL injection vulnerability in Joomla! CMS 3.1.x and 3.2.x before 3.2.3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...

CVE-2014-7984

Joomla! CMS 2.5.x before 2.5.19 and 3.x before 3.2.3 allows remote attackers to authenticate and bypass intended restrictions via vectors involving GMail authentication...

Joomla CMS Multi-Factor Authentication Bypass

Insufficient state checks lead to a vector that allows to bypass 2FA checks...

GHSA-6423-85CC-8GF6 Joomla CMS Multi-Factor Authentication Bypass

Insufficient state checks lead to a vector that allows to bypass 2FA checks...

[20250402] - Core - MFA Authentication Bypass

Joomla! CMS versions: 4.0.0 - 4.4.12, 5.0.0 - 5.2.5...

[20250301] - Core - Malicious file uploads via Media Manager

Joomla! CMS versions 4.0.0-4.4.11, 5.0.0-5.2.4...

[20250201] - Core - SQL injection vulnerability in Scheduled Tasks component

Joomla! CMS versions 4.1.0-4.4.10, 5.0.0-5.2.3...

[20250102] - Core - XSS vector in the id attribute of menu lists

Joomla! CMS versions 3.0.0-3.10.19-elts, 4.0.0-4.4.9, 5.0.0-5.2.2...

[20250101] - Core - XSS vectors in module chromes

Joomla! CMS versions 4.0.0-4.4.9, 5.0.0-5.2.2...