747 matches found
[20201101] - Core - com_finder ignores access levels on autosuggest
The autosuggestion feature of comfinder did not respect the access level of the corresponding terms...
[20200706] - Core - System Information screen could expose redis or proxy credentials
Inadequate filtering in the system information screen could expose redis or proxy credentials...
[20200705] - Core - Escape mod_random_image link
Lack of input filtering and escaping allows XSS attacks in modrandomimage...
[20200704] - Core - Variable tampering via user table class
Internal read-only fields in the User table class could be modified by users...
xcloner,3.53,Other
xcloner,3.53,Other Developer statement Today we have made available a new release — version 3.5.4 — for the unmaintained Joomla version of XCloner. Prior versions of XCloner for Joomla contained an Authenticated Local File Disclosure vulnerability that has been patched in the latest version. Any...
Ordasoft CCK, 6.1.12 Various
Ordasoft CCK, 6.1.12 Various,,Other new version number...
[20200605] - Core - CSRF in com_postinstall
Missing token checks in compostinstall cause CSRF vulnerabilities...
[20210305] - Core - Input validation within the template manager
Missing input validation within the template manager...
[20200701] - Core - CSRF in com_installer ajax_install endpoint
A missing token check in the ajaxinstall endpoint cominstaller causes a CSRF vulnerability...
[20200703] - Core - CSRF in com_privacy remove-request feature
A missing token check in the remove request section of comprivacy causes a CSRF vulnerability...
[20210303] - Core - XSS within alert messages showed to users
Missing filtering of messages showed to users that could lead to xss issues...
[20200603] - Core - XSS in com_modules tag options
Incorrect input validation of the module tag option in commodules allow XSS attacks...
[20200601] - Core - XSS in modules heading tag option
Lack of input validation in the heading tag option of the "Articles – Newsflash" and "Articles - Categories" modules allow XSS attacks...
[20210304] - Core - XSS within the feed parser library
Missing filtering of feed fields could lead to xss issues...
[20200602] - Core - Inconsistent default textfilter settings
The default settings of the global "textfilter" configuration doesn't block HTML inputs for 'Guest' users. With 3.9.19, the textfilter for new installations has been set to 'No HTML' for the groups 'Public', 'Guest' and 'Registered'...
[20200604] - Core - XSS in jQuery.htmlPrefilter
The jQuery project released version 3.5.0, and as part of that, disclosed two security vulnerabilities that affect all prior versions. As mentioned in the jQuery blog, both are "... security issues in jQuery’s DOM manipulation methods, as in .html, .append, and the others."...
[20200702] - Core - Missing checks can lead to a broken usergroups table record
Missing validation checks at the usergroups table object can result into an broken site configuration...
hwdplayer,4.2,SQL Injection
hwdplayer,4.2,SQL Injection Possible abandonware also...
GMapFP 3.30,Other
GMapFP 3.30,3.30,Other Related in https://vel.joomla.org/resolved/1835-gmapfp-3-39f-xss-cross-site-scripting new version number 3.55...
fabrik 3.9,Various
,fabrik 3.9. Various Issues NOTE: the earlier version number was a mistake by the reporter. new version number 3.9.1 Update Notice URL https://fabrikar.com/blog/87-fabrik-3-9-1-released...
acymailing, 6.9.2,Other
acymailing, 6.9.2,Other Update to version 6.9.2 Developer did not inform the VEL team...
[20200403] - Core - Incorrect access control in com_users access level deletion function
Incorrect ACL checks in the access level section of comusers allow the unauthorized deletion of usergroups...
[20200401] - Core - Incorrect access control in com_users access level editing function
Incorrect ACL checks in the access level section of comusers allow the unauthorized editing of usergroups...
[20200306] - Core - SQL injection in Featured Articles menu parameters
The lack of type casting of a variable in SQL statement leads to a SQL injection vulnerability in the "Featured Articles" frontend menutype...
[20200305] - Core - Incorrect Access Control in com_fields SQL field
Incorrect Access Control in the SQL fieldtype of comfields allows access for non-superadmin users...
[20200402] - Core - Missing checks for the root usergroup in usergroup table
Inproper input validations in the usergroup table class could lead to a broken ACL configuration...
[20200302] - Core - XSS in Protostar and Beez3
Inadequate handling of CSS selectors in the Protostar and Beez3 JavaScript allow XSS attacks...
[20210306] - Core - com_media allowed paths that are not intended for image uploads
commedia allowed paths that are not intended for image uploads...
[20200304] - Core - Identifier collisions in com_users
Missing length checks in the user table can lead to the creation of users with duplicate usernames and/or email addresses...
[20200301] - Core - CSRF in com_templates image actions
Missing token checks in the image actions of comtemplates causes CSRF vulnerabilities...
[20200803] - Core - Directory traversal in com_media
Lack of input validation allows commedia root paths outside of the webroot...
[20200303] - Core - Incorrect Access Control in com_templates
Various actions in comtemplates lack the required ACL checks, leading to various potential attack vectors...
[20200103] - Core - XSS in com_actionlogs
Inadequate escaping of usernames allow XSS attacks in comactionlogs...
[20200101] - Core - CSRF in batch actions
Missing token checks in the batch actions of various components causes CSRF vulnerabilities...
[20200102] - Core - CSRF com_templates LESS compiler
A missing CSRF token check in the LESS compiler of comtemplates causes a CSRF vulnerability...
[20191202] - Core - Various SQL injections through configuration parameters
The lack of validation of configuration parameters used in SQL queries caused various SQL injection vectors...
[20191201] - Core - Path Disclosure in framework files
Missing access check in framework files could lead to a path disclosure...
[20191002] - Core - Path Disclosure in phpuft8 mapping files
Missing access check in the phputf8 mapping files could lead to an path disclosure...
J2Store, 3.3.9. and previous,XSS (Cross Site Scripting)
J2Store,3.9.x,XSS Cross Site Scripting Update to 3.3.11 https://www.j2store.org/blog/general/j2store-3-3-11-released-with-improvements-and-a-security-fix.html...
[20191001] - Core - CSRF in com_template overrides view
A missing token check in comtemplate causes a CSRF vulnerability...
js jobs,1.1.5, 1.1.6, 1.2.5 and 1.2.6,Other
js jobs,1.1.5, 1.1.6, 1.2.5 and 1.2.6,Other Extension Update Details Fix the file security bug. new version number 2.1.7...
PayPlans,4.0, ID
PayPlans,4.0, ID https://stackideas.com/blog/payplans-4013 Update to 4.0.13...
[20190901] - Core - XSS in logo parameter of default templates
Inadequate escaping allowed XSS attacks using the logo parameter of the default templates...
jDownloads,3.2.64,SQL Injection
jDownloads,3.2.64,SQL Injection Developers update http://www.jdownloads.com/index.php/downloads/download/6-jdownloads/2-jdownloads-3-2.htmljd65...
kunena, 5.0.x - 5.1.14 ,XSS (Cross Site Scripting)
kunena, 5.0.x - 5.1.14 ,XSS Cross Site Scripting Developer statement https://www.kunena.org/blog/207-kunena-5-1-14-released...
JS support ticket,1.1.6, SQL Injection
JS support ticket,1.1.6, SQL Injection resolution: update to 1.1.7 update notice: https://joomsky.com/products/js-ticket-joomla.html...
Easy Discuss 4.1.9 SQL Injection
Easy Discuss 4.1.9 by Stack Ideas, SQL Injection Resolution: update to 4.1.10 update notice: https://stackideas.com/blog/important-security-update-for-easydiscuss4-1-10...
JS support ticket,1.1.5,Directory Traversal
JS support ticket,1.1.5,Directory Traversal resolution: update to 1.1.6 update notice: https://joomsky.com/products/js-ticket-joomla.html...
[20190701] - Core - Filter attribute in subform fields allows remote code execution
Inadequate filtering allows users authorised to create custom fields to manipulate the filtering options and inject an unvalidated option...
ZOO by YOOtheme,3.3.33,SQL Injection
ZOO by YOOtheme,3.3.33,SQL Injection Fix SQL injection vulnerability in Admin Controllers new version number 3.3.34 Update Notice URL https://yootheme.com/support/zoo/changelog...