Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / joomla

joomla

515 tracked vulnerabilities.

CVE-2020-35613 CRITICAL

Joomla! 3.0.0-3.9.22 - SQL Injection in Backend User List

CVE-2020-35612 HIGH

Joomla! 2.5.0-3.9.22 - Path Traversal via mod_random_image Folder Parameter

CVE-2020-35611 HIGH

Joomla! 2.5.0-3.9.22 - Unauthenticated Exposure of Sensitive Information in Global Configuration Page

CVE-2020-35610 HIGH

Joomla! 2.5.0-3.9.22 - Unauthenticated Information Disclosure via com_finder Autosuggestion

CVE-2020-24599 MEDIUM

Joomla! 3.9.0-3.9.20 - Cross-Site Scripting in mod_latestactions

CVE-2020-24598 MEDIUM

Joomla! 3.0.0-3.9.21 - Open Redirect in com_content Vote Feature

CVE-2020-15700 MEDIUM

Joomla! 3.7.0-3.9.19 - Cross-Site Request Forgery via com_installer AJAX Install Endpoint

CVE-2020-15699 MEDIUM

Joomla! 2.5.0-3.9.19 - Insufficient Verification of Data Authenticity in Usergroups Table

CVE-2020-15698 MEDIUM

Joomla! 3.0.0-3.9.19 - Unprotected Credential Exposure in System Information Screen

CVE-2020-15697 MEDIUM

Joomla! 3.0.0-3.9.19 - Variable Tampering via User Table Class

CVE-2020-15696 MEDIUM

Joomla! 3.0.0-3.9.19 - Cross-Site Scripting in mod_random_image

CVE-2020-15695 MEDIUM

Joomla! 3.9.0-3.9.19 - Cross-Site Request Forgery in com_privacy Remove Request Feature

CVE-2020-13763 HIGH

Joomla! < 3.9.19 - Unauthenticated HTML Injection via Global Textfilter Configuration

CVE-2020-13762 MEDIUM

Joomla! 3.9.0-3.9.18 - Cross-Site Scripting in com_modules Tag Option

CVE-2020-13761 MEDIUM

Joomla! < 3.9.19 - Cross-Site Scripting in Articles Module Heading Tag Option

CVE-2020-13760 HIGH

Joomla! < 3.9.19 - Cross-Site Request Forgery in com_postinstall

CVE-2020-11891 MEDIUM

Joomla! <3.9.17 - Privilege Escalation

CVE-2020-11890 MEDIUM

Joomla! < 3.9.17 - Improper Input Validation in Usergroup Table

CVE-2020-11889 MEDIUM

Joomla! <3.9.17 - Privilege Escalation

CVE-2020-10243 CRITICAL

Joomla! < 3.9.16 - SQL Injection in Featured Articles Menu Parameters

CVE-2020-10242 MEDIUM

Joomla! < 3.9.16 - Cross-Site Scripting in Protostar and Beez3 CSS Selectors

CVE-2020-10241 HIGH

Joomla! 3.2.0-3.9.15 - Cross-Site Request Forgery in com_templates Image Actions

CVE-2020-10240 MEDIUM

Joomla! 3.0.0-3.9.15 - User Identifier Collision via Missing Length Checks

CVE-2020-10239 HIGH

Joomla! 3.7.0-3.9.15 - Incorrect Access Control in com_fields SQL Fieldtype

CVE-2020-10238 HIGH

Joomla! < 3.9.16 - Incorrect Access Control in com_templates

Previous Page 4 of 21 Next

Products

joomla\! 282 joomla 81 joomla-cms 8 bsq_sitestats 6 rs_gallery2 4 com_beamospetition 3 com_weblinks 3 framework 3 archive 2 com_astatspro 2 com_downloads 2 com_facileforms 2 com_mailto 2 com_pcchess 2 com_pccookbook 2 com_rapidrecipe 2 com_sef 2 filter 2 jd-wiki 2 joomla-platform 2 akobook 1 application 1 be_it_easypartner_component 1 bibtex 1 car_manager 1 classifieds_component 1 colophon 1 com_acajoom 1 com_acctexp 1 com_artistavenue 1

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy