Joomla!@3.9.0 Security Vulnerabilities and Issues — Joomla!@3.9.0 CVE List

Lucene search

JoomlaJoomla!3.9.0

5 matches found

CVE•added 2020/12/28 8:15 p.m.•94 views

CVE-2020-35614

An issue was discovered in Joomla! 3.9.0 through 3.9.22. Improper handling of the username leads to a user enumeration attack vector in the backend login page.

5.3CVSS5.2AI score0.00006EPSS

CVE•added 2020/01/28 9:15 p.m.•90 views

CVE-2020-8421

An issue was discovered in Joomla! before 3.9.15. Inadequate escaping of usernames allows XSS attacks in com_actionlogs.

6.1CVSS6.1AI score0.01258EPSS

CVE•added 2020/06/02 8:15 p.m.•80 views

CVE-2020-13762

In Joomla! before 3.9.19, incorrect input validation of the module tag option in com_modules allows XSS.

6.1CVSS6.2AI score0.00226EPSS

CVE•added 2020/07/15 4:15 p.m.•64 views

CVE-2020-15695

An issue was discovered in Joomla! through 3.9.19. A missing token check in the remove request section of com_privacy causes a CSRF vulnerability.

6.8CVSS6.2AI score0.00006EPSS

CVE•added 2020/08/26 10:15 p.m.•64 views

CVE-2020-24599

An issue was discovered in Joomla! before 3.9.21. Lack of escaping in mod_latestactions allows XSS attacks.

6.1CVSS5.9AI score0.00855EPSS