joomla

515 tracked vulnerabilities.

CVE-2011-4321
Joomla! 1.5.x-1.5.24 - Weak Random Number Usage in Password Reset
Nov 23, 2011
EPSS 0.00
CVE-2011-3747
Joomla! 1.6.0 - Exposure of Sensitive Information via Direct PHP File Request
Sep 23, 2011
EPSS 0.00
CVE-2011-2892
Joomla! 1.6.x < 1.6.2 - Clickjacking via Frame Rendering
Jul 27, 2011
EPSS 0.00
CVE-2011-2891
Joomla! 1.6.x < 1.6.2 - Information Disclosure via Empty Itemid Parameter
Jul 27, 2011
EPSS 0.00
CVE-2011-2890
Joomla! < 1.5.23 - Information Disclosure via MediaViewMedia Base Variable
Jul 27, 2011
EPSS 0.00
CVE-2011-2889
Joomla! < 1.5.23 - Information Disclosure via Error Page Path Exposure
Jul 27, 2011
EPSS 0.00
CVE-2011-2710
Joomla! < 1.7.0 - Cross-Site Scripting via URI to includes/application.php and searchword Parameter
Jul 27, 2011
EPSS 0.00
CVE-2011-2509
Joomla! < 1.6.4 - Cross-Site Scripting via Multiple Query Parameters
Jul 27, 2011
EPSS 0.00
CVE-2011-2488
Joomla! < 1.5.23 - Information Disclosure
Jul 27, 2011
EPSS 0.00
CVE-2011-0005
Joomla com_search 1.0.x-1.0.15 - Cross-Site Scripting via Ordering Parameter
Jan 11, 2011
EPSS 0.00
CVE-2010-1435 CRITICAL
Joomla! Core <1.5.16 - Privilege Escalation
Jun 21, 2021
CVSS 9.8
EPSS 0.00
CVE-2010-1434 HIGH
Joomla! Core <1.5.16 - Session Fixation
Jun 21, 2021
CVSS 7.5
EPSS 0.00
CVE-2010-1433 CRITICAL
Joomla! 1.5.0-1.5.15 - Unauthenticated Arbitrary File Upload
Jun 21, 2021
CVSS 9.8
EPSS 0.00
CVE-2010-1432 HIGH
Joomla! Core <1.5.16 - Info Disclosure
Jun 21, 2021
CVSS 7.5
EPSS 0.00
CVE-2010-4945
Joomla! com_camelcitydb2 2.2 - SQL Injection
Oct 09, 2011
EPSS 0.00
CVE-2010-4944
Mambo/Joomla! - com_elite_experts - SQL Injection
Oct 09, 2011
EPSS 0.00
CVE-2010-4938
Joomla! com_weblinks - SQL Injection via Itemid Parameter
Oct 09, 2011
EPSS 0.00
CVE-2010-4696
Joomla! 1.5.x < 1.5.22 - SQL Injection via filter_order or filter_order_Dir Parameter
Jan 18, 2011
EPSS 0.00
CVE-2010-4166
Joomla! < 1.5.22 - SQL Injection via filter_order or filter_order_Dir Parameter
Jan 18, 2011
EPSS 0.00
CVE-2010-3712
Joomla! 1.5.x < 1.5.21 and 1.6.x < 1.6.1 - Cross-Site Scripting via Multiple Encoded Entities
Oct 28, 2010
EPSS 0.00
CVE-2010-2535
Joomla! 1.5.x < 1.5.20 - Authenticated Cross-Site Scripting in Back End
Oct 05, 2010
EPSS 0.00
CVE-2010-2681
Joomla com_sef - Remote Code Execution via mosConfig.absolute.path Parameter
Jul 12, 2010
EPSS 0.00
CVE-2010-2679
Joomla! com_weblinks - SQL Injection via id Parameter
Jul 08, 2010
EPSS 0.00
CVE-2010-1649
Joomla! 1.5-1.5.17 - Cross-Site Scripting in Administrator Screens
Jun 08, 2010
EPSS 0.00
CVE-2010-1739
Joomla! Newsfeeds Component - SQL Injection via feedid Parameter
May 06, 2010
EPSS 0.00
Products
joomla\! 282 joomla 81 joomla-cms 8 bsq_sitestats 6 rs_gallery2 4 com_beamospetition 3 com_weblinks 3 framework 3 archive 2 com_astatspro 2 com_downloads 2 com_facileforms 2 com_mailto 2 com_pcchess 2 com_pccookbook 2 com_rapidrecipe 2 com_sef 2 filter 2 jd-wiki 2 joomla-platform 2 akobook 1 application 1 be_it_easypartner_component 1 bibtex 1 car_manager 1 classifieds_component 1 colophon 1 com_acajoom 1 com_acctexp 1 com_artistavenue 1
Quick Filters
Critical CVEs With Exploits In CISA KEV