Joomla!@3.10.6 Security Vulnerabilities and Issues — Joomla!@3.10.6 CVE List

Lucene search

JoomlaJoomla!3.10.6

6 matches found

CVE•added 2022/03/30 4:15 p.m.•367 views

CVE-2022-23797

An issue was discovered in Joomla! 3.0.0 through 3.10.6 & 4.0.0 through 4.1.0. Inadequate filtering on the selected Ids on an request could resulted into an possible SQL injection.

9.8CVSS9.8AI score0.00105EPSS

CVE•added 2022/03/30 4:15 p.m.•255 views

CVE-2022-23793

An issue was discovered in Joomla! 3.0.0 through 3.10.6 & 4.0.0 through 4.1.0. Extracting an specifilcy crafted tar package could write files outside of the intended path.

7.5CVSS7.5AI score0.00049EPSS

CVE•added 2022/03/30 4:15 p.m.•130 views

CVE-2022-23798

An issue was discovered in Joomla! 2.5.0 through 3.10.6 & 4.0.0 through 4.1.0. Inadequate validation of URLs could result into an invalid check whether an redirect URL is internal or not.

6.1CVSS6.4AI score0.00033EPSS

CVE•added 2022/03/30 4:15 p.m.•108 views

CVE-2022-23795

An issue was discovered in Joomla! 2.5.0 through 3.10.6 & 4.0.0 through 4.1.0. A user row was not bound to a specific authentication mechanism which could under very special circumstances allow an account takeover.

9.8CVSS9.4AI score0.0001EPSS

CVE•added 2022/03/30 4:15 p.m.•106 views

CVE-2022-23794

An issue was discovered in Joomla! 3.0.0 through 3.10.6 & 4.0.0 through 4.1.0. Uploading a file name of an excess length causes the error. This error brings up the screen with the path of the source code of the web application.

5.3CVSS5.6AI score0.00006EPSS

CVE•added 2022/03/30 4:15 p.m.•106 views

CVE-2022-23796

An issue was discovered in Joomla! 3.7.0 through 3.10.6. Lack of input validation could allow an XSS attack using com_fields.

6.1CVSS6.2AI score0.00124EPSS