Joomla! Security Vulnerabilities

Joomla! is a set of forum components used in the Joomla! content management system. A security vulnerability exists in Joomla! that stems from improper input handling and could lead to a cross-site scripting XSS vulnerability...

Joomla! input validation error vulnerability (CNVD-2022-64098)

Joomla! is a set of forum components used in the Joomla! content management system. versions 2.5.0 to 3.10.6 and 4.0.0 to 4.1.0 contain an input validation error vulnerability that can be exploited by attackers to invalidate the check of whether the redirected url is internal, possibly leading to...

Joomla! Cross-site scripting vulnerability (CNVD-2022-64104)

Joomla! is a set of forum components used in the Joomla! content management system. versions 3.7.0 to 3.10.6 have a cross-site scripting vulnerability, which originates from the comfields class that does not sufficiently clean up and escape data provided to the user, and can be used by attackers ...

Gantry package 5.4.26 ,Other

Gantry package containing "Twig" library creates folders with improper folder permissions. On some servers this may lead to world writeable folders. see https://github.com/gantry/gantry5/issues/2363 https://github.com/twigphp/Twig/issues/2353 developer states not a security issue within their...