Joomla! Security Vulnerabilities and Issues — Joomla! CVE List

Lucene search

JoomlaJoomla!

6 matches found

CVE•added 2020/07/15 4:15 p.m.•60 views

CVE-2020-15698

An issue was discovered in Joomla! through 3.9.19. Inadequate filtering on the system information screen could expose Redis or proxy credentials

5.3CVSS5.3AI score0.00011EPSS

CVE•added 2020/07/15 4:15 p.m.•58 views

CVE-2020-15696

An issue was discovered in Joomla! through 3.9.19. Lack of input filtering and escaping allows XSS attacks in mod_random_image.

6.1CVSS5.8AI score0.02144EPSS

CVE•added 2020/07/15 4:15 p.m.•57 views

CVE-2020-15695

An issue was discovered in Joomla! through 3.9.19. A missing token check in the remove request section of com_privacy causes a CSRF vulnerability.

6.8CVSS6.2AI score0.00006EPSS

CVE•added 2020/07/15 4:15 p.m.•57 views

CVE-2020-15697

An issue was discovered in Joomla! through 3.9.19. Internal read-only fields in the User table class could be modified by users.

4.3CVSS4.7AI score0.00009EPSS

CVE•added 2020/07/15 4:15 p.m.•54 views

CVE-2020-15699

An issue was discovered in Joomla! through 3.9.19. Missing validation checks on the usergroups table object can result in a broken site configuration.

5.3CVSS5.3AI score0.00008EPSS

CVE•added 2020/07/15 4:15 p.m.•36 views

CVE-2020-15700

An issue was discovered in Joomla! through 3.9.19. A missing token check in the ajax_install endpoint of com_installer causes a CSRF vulnerability.

6.8CVSS6.3AI score0.00006EPSS