725 matches found
[20200401] - Core - Incorrect access control in com_users access level editing function
Incorrect ACL checks in the access level section of comusers allow the unauthorized editing of usergroups...
[20200306] - Core - SQL injection in Featured Articles menu parameters
The lack of type casting of a variable in SQL statement leads to a SQL injection vulnerability in the "Featured Articles" frontend menutype...
[20200305] - Core - Incorrect Access Control in com_fields SQL field
Incorrect Access Control in the SQL fieldtype of comfields allows access for non-superadmin users...
[20200402] - Core - Missing checks for the root usergroup in usergroup table
Inproper input validations in the usergroup table class could lead to a broken ACL configuration...
[20200302] - Core - XSS in Protostar and Beez3
Inadequate handling of CSS selectors in the Protostar and Beez3 JavaScript allow XSS attacks...
[20210306] - Core - com_media allowed paths that are not intended for image uploads
commedia allowed paths that are not intended for image uploads...
[20200304] - Core - Identifier collisions in com_users
Missing length checks in the user table can lead to the creation of users with duplicate usernames and/or email addresses...
[20200301] - Core - CSRF in com_templates image actions
Missing token checks in the image actions of comtemplates causes CSRF vulnerabilities...
[20200803] - Core - Directory traversal in com_media
Lack of input validation allows commedia root paths outside of the webroot...
[20200303] - Core - Incorrect Access Control in com_templates
Various actions in comtemplates lack the required ACL checks, leading to various potential attack vectors...
[20200103] - Core - XSS in com_actionlogs
Inadequate escaping of usernames allow XSS attacks in comactionlogs...
[20200101] - Core - CSRF in batch actions
Missing token checks in the batch actions of various components causes CSRF vulnerabilities...
[20200102] - Core - CSRF com_templates LESS compiler
A missing CSRF token check in the LESS compiler of comtemplates causes a CSRF vulnerability...
[20191202] - Core - Various SQL injections through configuration parameters
The lack of validation of configuration parameters used in SQL queries caused various SQL injection vectors...
[20191201] - Core - Path Disclosure in framework files
Missing access check in framework files could lead to a path disclosure...
[20191002] - Core - Path Disclosure in phpuft8 mapping files
Missing access check in the phputf8 mapping files could lead to an path disclosure...
J2Store, 3.3.9. and previous,XSS (Cross Site Scripting)
J2Store,3.9.x,XSS Cross Site Scripting Update to 3.3.11 https://www.j2store.org/blog/general/j2store-3-3-11-released-with-improvements-and-a-security-fix.html...
[20191001] - Core - CSRF in com_template overrides view
A missing token check in comtemplate causes a CSRF vulnerability...
js jobs,1.1.5, 1.1.6, 1.2.5 and 1.2.6,Other
js jobs,1.1.5, 1.1.6, 1.2.5 and 1.2.6,Other Extension Update Details Fix the file security bug. new version number 2.1.7...
PayPlans,4.0, ID
PayPlans,4.0, ID https://stackideas.com/blog/payplans-4013 Update to 4.0.13...
[20190901] - Core - XSS in logo parameter of default templates
Inadequate escaping allowed XSS attacks using the logo parameter of the default templates...
jDownloads,3.2.64,SQL Injection
jDownloads,3.2.64,SQL Injection Developers update http://www.jdownloads.com/index.php/downloads/download/6-jdownloads/2-jdownloads-3-2.htmljd65...
kunena, 5.0.x - 5.1.14 ,XSS (Cross Site Scripting)
kunena, 5.0.x - 5.1.14 ,XSS Cross Site Scripting Developer statement https://www.kunena.org/blog/207-kunena-5-1-14-released...
JS support ticket,1.1.6, SQL Injection
JS support ticket,1.1.6, SQL Injection resolution: update to 1.1.7 update notice: https://joomsky.com/products/js-ticket-joomla.html...
Easy Discuss 4.1.9 SQL Injection
Easy Discuss 4.1.9 by Stack Ideas, SQL Injection Resolution: update to 4.1.10 update notice: https://stackideas.com/blog/important-security-update-for-easydiscuss4-1-10...
JS support ticket,1.1.5,Directory Traversal
JS support ticket,1.1.5,Directory Traversal resolution: update to 1.1.6 update notice: https://joomsky.com/products/js-ticket-joomla.html...
[20190701] - Core - Filter attribute in subform fields allows remote code execution
Inadequate filtering allows users authorised to create custom fields to manipulate the filtering options and inject an unvalidated option...
ZOO by YOOtheme,3.3.33,SQL Injection
ZOO by YOOtheme,3.3.33,SQL Injection Fix SQL injection vulnerability in Admin Controllers new version number 3.3.34 Update Notice URL https://yootheme.com/support/zoo/changelog...
eXtplorer 2.1.12 various
eXtplorer 2.1.12 various Update Notice URL https://extplorer.net/news/24...
oziogallery,5.0.1,XSS (Cross Site Scripting)
oziogallery,5.0.1,XSS Cross Site Scripting Update Notice URL https://www.facebook.com/groups/oziogallery/permalink/1588619457938122/ Change log Url https://www.opensourcesolutions.es/en/ext/ozio-gallery.htmlChangelog...
Akeeba LoginGuard,3.1.1 and all lower versions,Information Disclosure
Akeeba LoginGuard,3.1.1 and all lower versions,Information Disclosure Update via developers website...
RSEvents! Pro Cart Plugin older than 1.1.15 ,Other
RSEvents! Pro Cart Plugin older than 1.1.15,Other UpdateNotice URL https://www.rsjoomla.com/blog/view/468-csv-vulnerability-explained.html...
RSMembership! older than 1.22.11 ,Other
RSMembership! older than 1.22.11,Other UpdateNotice URL https://www.rsjoomla.com/blog/view/468-csv-vulnerability-explained.html...
RSEvents! Pro (March 2019),Other
RSEvents! Pro March 2019,Other new version number 2.2.1 UpdateNotice URL https://www.rsjoomla.com/blog/view/468-csv-vulnerability-explained.html...
RSForm! Pro,2.2.0 (March 2019),Other
RSForm! Pro,2.2.0 March 2019,Other new version number 2.2.1 UpdateNotice URL https://www.rsjoomla.com/blog/view/468-csv-vulnerability-explained.html...
[20190501] - Core - XSS in com_users ACL debug views
The debug views of comusers do not properly escape user supplied data, which leads to a potential XSS attack vector...
[20190601] - Core - CSV injection in com_actionlogs
The CSV export of comactionslogs is vulnerable to CSV injection...
Phoca Gallery,4.3.15 prior,Other
Phoca Gallery,4.3.15 prior,Other Update Notice URL https://www.phoca.cz/news/1029-phoca-gallery-4-3-17-released...
kunena, ,XSS (Cross Site Scripting)
kunena,5.1.3,XSS Cross Site Scripting...
[20190603] - Core - ACL hardening of com_joomlaupdate
The update server URL of comjoomlaupdate can be manipulated by non Super-Admin users...
[20190801] - Core - Hardening com_contact contact form
Inadequate checks in comcontact could allowed mail submission in disabled forms...
[20190502] - Core - By-passing protection of Phar Stream Wrapper Interceptor
In Joomla 3.9.3, the vulnerability of insecure deserialization when executing Phar archives was addressed by removing the known attack vector in the Joomla core. In order to intercept file invocations like fileexists or stat on compromised Phar archives the base name has to be determined and...
AcyMailing 5.10.6 Various
AcyMailing 5.10.6 Various new version number 5.10.7 UpdateNotice URL https://www.acyba.com/support/change-log.html Changelog Url https://www.acyba.com/support/change-log.html...
[20190403] - Core - Object.prototype pollution in JQuery $.extend
The $.extend method of JQuery is vulnerable to Object.prototype pollution attacks...
TCPDF Library,6.2.12,Other
TCPDF Library,6.2.12,Other updated to v6.2.26 | ---|--- ttweetfsubscribe...
Jevents 3.4.49 Various
Jevents 3.4.49 Various UpdateNotice URL https://www.jevents.net/blog/jevents-3-4-50-released-all-users-should-upgrade...
[20190402] - Core - Helpsites refresh endpoint callable for unauthenticated users
The "refresh list of helpsites" endpoint of comusers lacks access checks, allowing calls from unauthenticated users...
[20190401] - Core - Directory Traversal in com_media
The Media Manager component does not properly sanitise the folder parameter, allowing attackers to act outside the media manager root directory...
[20190301] - Core - XSS in com_config JSON handler
The JSON handler in comconfig lacks input validation, leading to XSS vulnerability...
Kunena,5.1.9,XSS (Cross Site Scripting)
Kunena,5.1.9,XSS Cross Site Scripting https://www.kunena.org/blog/203-kunena-5-1-10-released...