Joomla Joomla

Do you want an email whenever new security vulnerabilities are reported in Joomla?

By the Year

In 2022 there have been 9 vulnerabilities in Joomla with an average score of 7.4 out of ten. Last year Joomla had 28 security vulnerabilities published. Right now, Joomla is on track to have less security vulnerabilities in 2022 than it did last year. However, the average CVE base score of the vulnerabilities in 2022 is greater by 0.58.

Year Vulnerabilities Average Score
2022 9 7.40
2021 28 6.82
2020 31 6.83
2019 29 6.88
2018 24 6.93

It may take a day or so for new Joomla vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Joomla Security Vulnerabilities

An issue was discovered in Joomla! 4.0.0 through 4.1.0

CVE-2022-23801 6.1 - Medium - March 30, 2022

An issue was discovered in Joomla! 4.0.0 through 4.1.0. Possible XSS atack vector through SVG embedding in com_media.

XSS

An issue was discovered in Joomla! 4.0.0 through 4.1.0

CVE-2022-23800 6.1 - Medium - March 30, 2022

An issue was discovered in Joomla! 4.0.0 through 4.1.0. Inadequate content filtering leads to XSS vulnerabilities in various components.

XSS

An issue was discovered in Joomla! 4.0.0 through 4.1.0

CVE-2022-23799 9.8 - Critical - March 30, 2022

An issue was discovered in Joomla! 4.0.0 through 4.1.0. Under specific circumstances, JInput pollutes method-specific input bags with $_REQUEST data.

An issue was discovered in Joomla! 2.5.0 through 3.10.6 & 4.0.0 through 4.1.0

CVE-2022-23798 6.1 - Medium - March 30, 2022

An issue was discovered in Joomla! 2.5.0 through 3.10.6 & 4.0.0 through 4.1.0. Inadequate validation of URLs could result into an invalid check whether an redirect URL is internal or not.

Open Redirect

An issue was discovered in Joomla! 3.0.0 through 3.10.6 & 4.0.0 through 4.1.0

CVE-2022-23797 9.8 - Critical - March 30, 2022

An issue was discovered in Joomla! 3.0.0 through 3.10.6 & 4.0.0 through 4.1.0. Inadequate filtering on the selected Ids on an request could resulted into an possible SQL injection.

SQL Injection

An issue was discovered in Joomla! 3.7.0 through 3.10.6

CVE-2022-23796 6.1 - Medium - March 30, 2022

An issue was discovered in Joomla! 3.7.0 through 3.10.6. Lack of input validation could allow an XSS attack using com_fields.

XSS

An issue was discovered in Joomla! 2.5.0 through 3.10.6 & 4.0.0 through 4.1.0

CVE-2022-23795 9.8 - Critical - March 30, 2022

An issue was discovered in Joomla! 2.5.0 through 3.10.6 & 4.0.0 through 4.1.0. A user row was not bound to a specific authentication mechanism which could under very special circumstances allow an account takeover.

authentification

An issue was discovered in Joomla! 3.0.0 through 3.10.6 & 4.0.0 through 4.1.0

CVE-2022-23794 5.3 - Medium - March 30, 2022

An issue was discovered in Joomla! 3.0.0 through 3.10.6 & 4.0.0 through 4.1.0. Uploading a file name of an excess length causes the error. This error brings up the screen with the path of the source code of the web application.

Generation of Error Message Containing Sensitive Information

An issue was discovered in Joomla! 3.0.0 through 3.10.6 & 4.0.0 through 4.1.0

CVE-2022-23793 7.5 - High - March 30, 2022

An issue was discovered in Joomla! 3.0.0 through 3.10.6 & 4.0.0 through 4.1.0. Extracting an specifilcy crafted tar package could write files outside of the intended path.

Directory traversal

An issue was discovered in Joomla! 4.0.0

CVE-2021-26040 9.1 - Critical - August 24, 2021

An issue was discovered in Joomla! 4.0.0. The media manager does not correctly check the user's permissions before executing a file deletion command.

AuthZ

An issue was discovered in Joomla! 3.0.0 through 3.9.27

CVE-2021-26039 6.1 - Medium - July 07, 2021

An issue was discovered in Joomla! 3.0.0 through 3.9.27. Inadequate escaping in the imagelist view of com_media leads to a XSS vulnerability.

XSS

An issue was discovered in Joomla! 3.0.0 through 3.9.27

CVE-2021-26035 6.1 - Medium - July 07, 2021

An issue was discovered in Joomla! 3.0.0 through 3.9.27. Inadequate escaping in the rules field of the JForm API leads to a XSS vulnerability.

XSS

An issue was discovered in Joomla! 2.5.0 through 3.9.27

CVE-2021-26038 7.5 - High - July 07, 2021

An issue was discovered in Joomla! 2.5.0 through 3.9.27. Install action in com_installer lack the required hardcoded ACL checks for superusers. A default system is not affected cause the default ACL for com_installer is limited to super users already.

Improper Check for Unusual or Exceptional Conditions

An issue was discovered in Joomla! 2.5.0 through 3.9.27

CVE-2021-26037 5.3 - Medium - July 07, 2021

An issue was discovered in Joomla! 2.5.0 through 3.9.27. CMS functions did not properly termine existing user sessions when a user's password was changed or the user was blocked.

Insufficient Session Expiration

An issue was discovered in Joomla! 2.5.0 through 3.9.27

CVE-2021-26036 7.5 - High - July 07, 2021

An issue was discovered in Joomla! 2.5.0 through 3.9.27. Missing validation of input could lead to a broken usergroups table.

Improper Input Validation

Joomla! Core is prone to a security bypass vulnerability

CVE-2010-1435 9.8 - Critical - June 21, 2021

Joomla! Core is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently retrieve password reset tokens from the database through an already existing SQL injection vector. Joomla! Core versions 1.5.x ranging from 1.5.0 and up to and including 1.5.15 are vulnerable.

AuthZ

Joomla! Core is prone to a session fixation vulnerability

CVE-2010-1434 7.5 - High - June 21, 2021

Joomla! Core is prone to a session fixation vulnerability. An attacker may leverage this issue to hijack an arbitrary session and gain access to sensitive information, which may help in launching further attacks. Joomla! Core versions 1.5.x ranging from 1.5.0 and up to and including 1.5.15 are vulnerable.

Session Fixation

Joomla! Core is prone to a vulnerability

CVE-2010-1433 9.8 - Critical - June 21, 2021

Joomla! Core is prone to a vulnerability that lets attackers upload arbitrary files because the application fails to properly verify user-supplied input. An attacker can exploit this vulnerability to upload arbitrary code and run it in the context of the webserver process. This may facilitate unauthorized access or privilege escalation; other attacks are also possible. Joomla! Core versions 1.5.x ranging from 1.5.0 and up to and including 1.5.15 are vulnerable.

Unrestricted File Upload

Joomla! Core is prone to an information disclosure vulnerability

CVE-2010-1432 7.5 - High - June 21, 2021

Joomla! Core is prone to an information disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may help in launching further attacks. Joomla! Core versions 1.5.x ranging from 1.5.0 and up to and including 1.5.15 are vulnerable.

Information Disclosure

An issue was discovered in Joomla! 3.0.0 through 3.9.26

CVE-2021-26034 6.5 - Medium - May 26, 2021

An issue was discovered in Joomla! 3.0.0 through 3.9.26. A missing token check causes a CSRF vulnerability in data download endpoints in com_banners and com_sysinfo.

Session Riding

An issue was discovered in Joomla! 3.0.0 through 3.9.26

CVE-2021-26033 6.5 - Medium - May 26, 2021

An issue was discovered in Joomla! 3.0.0 through 3.9.26. A missing token check causes a CSRF vulnerability in the AJAX reordering endpoint.

Session Riding

An issue was discovered in Joomla! 3.0.0 through 3.9.26

CVE-2021-26032 6.1 - Medium - May 26, 2021

An issue was discovered in Joomla! 3.0.0 through 3.9.26. HTML was missing in the executable block list of MediaHelper::canUpload, leading to XSS attack vectors.

XSS

An issue was discovered in Joomla! 3.0.0 through 3.9.25

CVE-2021-26031 5.3 - Medium - April 14, 2021

An issue was discovered in Joomla! 3.0.0 through 3.9.25. Inadequate filters on module layout settings could lead to an LFI.

An issue was discovered in Joomla! 3.0.0 through 3.9.25

CVE-2021-26030 6.1 - Medium - April 14, 2021

An issue was discovered in Joomla! 3.0.0 through 3.9.25. Inadequate escaping allowed XSS attacks using the logo parameter of the default templates on error page

XSS

An issue was discovered in Joomla! 3.2.0 through 3.9.24

CVE-2021-23126 5.3 - Medium - March 04, 2021

An issue was discovered in Joomla! 3.2.0 through 3.9.24. Usage of the insecure rand() function within the process of generating the 2FA secret.

Inadequate Encryption Strength

An issue was discovered in Joomla! 3.2.0 through 3.9.24

CVE-2021-23127 9.1 - Critical - March 04, 2021

An issue was discovered in Joomla! 3.2.0 through 3.9.24. Usage of an insufficient length for the 2FA secret accoring to RFC 4226 of 10 bytes vs 20 bytes.

An issue was discovered in Joomla! 3.2.0 through 3.9.24

CVE-2021-23128 9.1 - Critical - March 04, 2021

An issue was discovered in Joomla! 3.2.0 through 3.9.24. The core shipped but unused randval implementation within FOF (FOFEncryptRandval) used an potential insecure implemetation. That has now been replaced with a call to 'random_bytes()' and its backport that is shipped within random_compat.

An issue was discovered in Joomla! 2.5.0 through 3.9.24

CVE-2021-23129 6.1 - Medium - March 04, 2021

An issue was discovered in Joomla! 2.5.0 through 3.9.24. Missing filtering of messages showed to users that could lead to xss issues.

XSS

An issue was discovered in Joomla! 2.5.0 through 3.9.24

CVE-2021-23130 6.1 - Medium - March 04, 2021

An issue was discovered in Joomla! 2.5.0 through 3.9.24. Missing filtering of feed fields could lead to xss issues.

XSS

An issue was discovered in Joomla! 3.2.0 through 3.9.24

CVE-2021-23131 7.5 - High - March 04, 2021

An issue was discovered in Joomla! 3.2.0 through 3.9.24. Missing input validation within the template manager.

Improper Input Validation

An issue was discovered in Joomla! 3.0.0 through 3.9.24

CVE-2021-23132 7.5 - High - March 04, 2021

An issue was discovered in Joomla! 3.0.0 through 3.9.24. com_media allowed paths that are not intended for image uploads

An issue was discovered in Joomla! 3.0.0 through 3.9.24

CVE-2021-26027 5.3 - Medium - March 04, 2021

An issue was discovered in Joomla! 3.0.0 through 3.9.24. Incorrect ACL checks could allow unauthorized change of the category for an article.

Exposure of Resource to Wrong Sphere

An issue was discovered in Joomla! 3.0.0 through 3.9.24

CVE-2021-26028 5.5 - Medium - March 04, 2021

An issue was discovered in Joomla! 3.0.0 through 3.9.24. Extracting an specifilcy crafted zip package could write files outside of the intended path.

Directory traversal

An issue was discovered in Joomla! 1.6.0 through 3.9.24

CVE-2021-26029 5.3 - Medium - March 04, 2021

An issue was discovered in Joomla! 1.6.0 through 3.9.24. Inadequate filtering of form contents could allow to overwrite the author field.

Improper Input Validation

An issue was discovered in Joomla! 3.0.0 through 3.9.23

CVE-2021-23123 5.3 - Medium - January 12, 2021

An issue was discovered in Joomla! 3.0.0 through 3.9.23. The lack of ACL checks in the orderPosition endpoint of com_modules leak names of unpublished and/or inaccessible modules.

AuthZ

An issue was discovered in Joomla! 3.9.0 through 3.9.23

CVE-2021-23124 6.1 - Medium - January 12, 2021

An issue was discovered in Joomla! 3.9.0 through 3.9.23. The lack of escaping in mod_breadcrumbs aria-label attribute allows XSS attacks.

XSS

An issue was discovered in Joomla! 3.1.0 through 3.9.23

CVE-2021-23125 6.1 - Medium - January 12, 2021

An issue was discovered in Joomla! 3.1.0 through 3.9.23. The lack of escaping of image-related parameters in multiple com_tags views cause lead to XSS attack vectors.

XSS

An issue was discovered in Joomla! 2.5.0 through 3.9.22

CVE-2020-35610 7.5 - High - December 28, 2020

An issue was discovered in Joomla! 2.5.0 through 3.9.22. The autosuggestion feature of com_finder did not respect the access level of the corresponding terms.

An issue was discovered in Joomla! 2.5.0 through 3.9.22

CVE-2020-35611 7.5 - High - December 28, 2020

An issue was discovered in Joomla! 2.5.0 through 3.9.22. The globlal configuration page does not remove secrets from the HTML output, disclosing the current values.

Information Disclosure

An issue was discovered in Joomla! 2.5.0 through 3.9.22

CVE-2020-35612 7.5 - High - December 28, 2020

An issue was discovered in Joomla! 2.5.0 through 3.9.22. The folder parameter of mod_random_image lacked input validation, leading to a path traversal vulnerability.

Directory traversal

An issue was discovered in Joomla! 3.0.0 through 3.9.22

CVE-2020-35613 9.8 - Critical - December 28, 2020

An issue was discovered in Joomla! 3.0.0 through 3.9.22. Improper filter blacklist configuration leads to a SQL injection vulnerability in the backend user list.

SQL Injection

An issue was discovered in Joomla! 3.9.0 through 3.9.22

CVE-2020-35614 5.3 - Medium - December 28, 2020

An issue was discovered in Joomla! 3.9.0 through 3.9.22. Improper handling of the username leads to a user enumeration attack vector in the backend login page.

Information Disclosure

An issue was discovered in Joomla! 2.5.0 through 3.9.22

CVE-2020-35615 6.3 - Medium - December 28, 2020

An issue was discovered in Joomla! 2.5.0 through 3.9.22. A missing token check in the emailexport feature of com_privacy causes a CSRF vulnerability.

Session Riding

An issue was discovered in Joomla! 1.7.0 through 3.9.22

CVE-2020-35616 7.5 - High - December 28, 2020

An issue was discovered in Joomla! 1.7.0 through 3.9.22. Lack of input validation while handling ACL rulesets can cause write ACL violations.

Improper Input Validation

An issue was discovered in Joomla! before 3.9.21

CVE-2020-24598 6.1 - Medium - August 26, 2020

An issue was discovered in Joomla! before 3.9.21. Lack of input validation in the vote feature of com_content leads to an open redirect.

Open Redirect

An issue was discovered in Joomla! before 3.9.21

CVE-2020-24599 6.1 - Medium - August 26, 2020

An issue was discovered in Joomla! before 3.9.21. Lack of escaping in mod_latestactions allows XSS attacks.

XSS

An issue was discovered in Joomla! through 3.9.19

CVE-2020-15695 6.3 - Medium - July 15, 2020

An issue was discovered in Joomla! through 3.9.19. A missing token check in the remove request section of com_privacy causes a CSRF vulnerability.

Session Riding

An issue was discovered in Joomla! through 3.9.19

CVE-2020-15696 6.1 - Medium - July 15, 2020

An issue was discovered in Joomla! through 3.9.19. Lack of input filtering and escaping allows XSS attacks in mod_random_image.

XSS

An issue was discovered in Joomla! through 3.9.19

CVE-2020-15697 4.3 - Medium - July 15, 2020

An issue was discovered in Joomla! through 3.9.19. Internal read-only fields in the User table class could be modified by users.

Incorrect Permission Assignment for Critical Resource

An issue was discovered in Joomla! through 3.9.19

CVE-2020-15698 5.3 - Medium - July 15, 2020

An issue was discovered in Joomla! through 3.9.19. Inadequate filtering on the system information screen could expose Redis or proxy credentials

Information Disclosure

An issue was discovered in Joomla! through 3.9.19

CVE-2020-15699 5.3 - Medium - July 15, 2020

An issue was discovered in Joomla! through 3.9.19. Missing validation checks on the usergroups table object can result in a broken site configuration.

Insufficient Verification of Data Authenticity

An issue was discovered in Joomla! through 3.9.19

CVE-2020-15700 6.3 - Medium - July 15, 2020

An issue was discovered in Joomla! through 3.9.19. A missing token check in the ajax_install endpoint of com_installer causes a CSRF vulnerability.

Session Riding

In Joomla! before 3.9.19

CVE-2020-13760 8.8 - High - June 02, 2020

In Joomla! before 3.9.19, missing token checks in com_postinstall lead to CSRF.

Session Riding

In Joomla! before 3.9.19, lack of input validation in the heading tag option of the "Articles - Newsflash" and "Articles - Categories" modules

CVE-2020-13761 6.1 - Medium - June 02, 2020

In Joomla! before 3.9.19, lack of input validation in the heading tag option of the "Articles - Newsflash" and "Articles - Categories" modules allows XSS.

XSS

In Joomla! before 3.9.19, incorrect input validation of the module tag option in com_modules

CVE-2020-13762 6.1 - Medium - June 02, 2020

In Joomla! before 3.9.19, incorrect input validation of the module tag option in com_modules allows XSS.

XSS

In Joomla! before 3.9.19

CVE-2020-13763 7.5 - High - June 02, 2020

In Joomla! before 3.9.19, the default settings of the global textfilter configuration do not block HTML inputs for Guest users.

Improper Preservation of Permissions

An issue was discovered in Joomla! before 3.9.17

CVE-2020-11889 5.3 - Medium - April 21, 2020

An issue was discovered in Joomla! before 3.9.17. Incorrect ACL checks in the access level section of com_users allow the unauthorized deletion of usergroups.

AuthZ

An issue was discovered in Joomla! before 3.9.17

CVE-2020-11890 5.3 - Medium - April 21, 2020

An issue was discovered in Joomla! before 3.9.17. Improper input validations in the usergroup table class could lead to a broken ACL configuration.

Improper Input Validation

An issue was discovered in Joomla! before 3.9.17

CVE-2020-11891 5.3 - Medium - April 21, 2020

An issue was discovered in Joomla! before 3.9.17. Incorrect ACL checks in the access level section of com_users allow the unauthorized editing of usergroups.

AuthZ

An issue was discovered in Joomla! before 3.9.16

CVE-2020-10238 7.5 - High - March 16, 2020

An issue was discovered in Joomla! before 3.9.16. Various actions in com_templates lack the required ACL checks, leading to various potential attack vectors.

Exposure of Resource to Wrong Sphere

An issue was discovered in Joomla! before 3.9.16

CVE-2020-10239 8.8 - High - March 16, 2020

An issue was discovered in Joomla! before 3.9.16. Incorrect Access Control in the SQL fieldtype of com_fields allows access for non-superadmin users.

AuthZ

An issue was discovered in Joomla! before 3.9.16

CVE-2020-10240 5.3 - Medium - March 16, 2020

An issue was discovered in Joomla! before 3.9.16. Missing length checks in the user table can lead to the creation of users with duplicate usernames and/or email addresses.

Improper Input Validation

An issue was discovered in Joomla! before 3.9.16

CVE-2020-10241 8.8 - High - March 16, 2020

An issue was discovered in Joomla! before 3.9.16. Missing token checks in the image actions of com_templates lead to CSRF.

Session Riding

An issue was discovered in Joomla! before 3.9.16

CVE-2020-10242 6.1 - Medium - March 16, 2020

An issue was discovered in Joomla! before 3.9.16. Inadequate handling of CSS selectors in the Protostar and Beez3 JavaScript allows XSS attacks.

XSS

An issue was discovered in Joomla! before 3.9.16

CVE-2020-10243 9.8 - Critical - March 16, 2020

An issue was discovered in Joomla! before 3.9.16. The lack of type casting of a variable in a SQL statement leads to a SQL injection vulnerability in the Featured Articles frontend menutype.

SQL Injection

An issue was discovered in Joomla! before 3.9.15

CVE-2020-8419 8.8 - High - January 28, 2020

An issue was discovered in Joomla! before 3.9.15. Missing token checks in the batch actions of various components cause CSRF vulnerabilities.

Session Riding

An issue was discovered in Joomla! before 3.9.15

CVE-2020-8420 8.8 - High - January 28, 2020

An issue was discovered in Joomla! before 3.9.15. A missing CSRF token check in the LESS compiler of com_templates causes a CSRF vulnerability.

Session Riding

An issue was discovered in Joomla! before 3.9.15

CVE-2020-8421 6.1 - Medium - January 28, 2020

An issue was discovered in Joomla! before 3.9.15. Inadequate escaping of usernames allows XSS attacks in com_actionlogs.

XSS

In Joomla! before 3.9.14

CVE-2019-19845 5.3 - Medium - December 18, 2019

In Joomla! before 3.9.14, a missing access check in framework files could lead to a path disclosure.

Directory traversal

In Joomla! before 3.9.14

CVE-2019-19846 9.8 - Critical - December 18, 2019

In Joomla! before 3.9.14, the lack of validation of configuration parameters used in SQL queries caused various SQL injection vectors.

SQL Injection

An issue was discovered in Joomla! before 3.9.13

CVE-2019-18650 8.8 - High - November 06, 2019

An issue was discovered in Joomla! before 3.9.13. A missing token check in com_template causes a CSRF vulnerability.

Session Riding

An issue was discovered in Joomla! before 3.9.13

CVE-2019-18674 5.3 - Medium - November 06, 2019

An issue was discovered in Joomla! before 3.9.13. A missing access check in the phputf8 mapping files could lead to a path disclosure.

AuthZ

In Joomla! 3.x before 3.9.12, inadequate escaping

CVE-2019-16725 6.1 - Medium - September 24, 2019

In Joomla! 3.x before 3.9.12, inadequate escaping allowed XSS attacks using the logo parameter of the default templates.

XSS

In Joomla! before 3.9.11, inadequate checks in com_contact could

CVE-2019-15028 5.3 - Medium - August 14, 2019

In Joomla! before 3.9.11, inadequate checks in com_contact could allow mail submission in disabled forms.

In Joomla! 3.9.7 and 3.9.8, inadequate filtering

CVE-2019-14654 8.8 - High - August 05, 2019

In Joomla! 3.9.7 and 3.9.8, inadequate filtering allows users authorised to create custom fields to manipulate the filtering options and inject an unvalidated option. In other words, the filter attribute in subform fields allows remote code execution. This is fixed in 3.9.9.

An issue was discovered in Joomla! before 3.9.7

CVE-2019-12764 6.5 - Medium - June 11, 2019

An issue was discovered in Joomla! before 3.9.7. The update server URL of com_joomlaupdate can be manipulated by non Super-Admin users.

An issue was discovered in Joomla! before 3.9.7

CVE-2019-12765 9.8 - Critical - June 11, 2019

An issue was discovered in Joomla! before 3.9.7. The CSV export of com_actionslogs is vulnerable to CSV injection.

CSV Injection

An issue was discovered in Joomla! before 3.9.7

CVE-2019-12766 6.1 - Medium - June 11, 2019

An issue was discovered in Joomla! before 3.9.7. The subform fieldtype does not sufficiently filter or validate input of subfields. This leads to XSS attack vectors.

XSS

An issue was discovered in Joomla! before 3.9.6

CVE-2019-11809 6.1 - Medium - May 20, 2019

An issue was discovered in Joomla! before 3.9.6. The debug views of com_users do not properly escape user supplied data, which leads to a potential XSS attack vector.

XSS

The PharStreamWrapper (aka phar-stream-wrapper) package 2.x before 2.1.1 and 3.x before 3.1.1 for TYPO3 does not prevent directory traversal, which

CVE-2019-11831 9.8 - Critical - May 09, 2019

The PharStreamWrapper (aka phar-stream-wrapper) package 2.x before 2.1.1 and 3.x before 3.1.1 for TYPO3 does not prevent directory traversal, which allows attackers to bypass a deserialization protection mechanism, as demonstrated by a phar:///path/bad.phar/../good.phar URL.

Directory traversal

jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {},

CVE-2019-11358 6.1 - Medium - April 20, 2019

jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.

Prototype Pollution

An issue was discovered in Joomla! before 3.9.5

CVE-2019-10945 9.8 - Critical - April 10, 2019

An issue was discovered in Joomla! before 3.9.5. The Media Manager component does not properly sanitize the folder parameter, allowing attackers to act outside the media manager root directory.

Directory traversal

An issue was discovered in Joomla! before 3.9.5

CVE-2019-10946 7.5 - High - April 10, 2019

An issue was discovered in Joomla! before 3.9.5. The "refresh list of helpsites" endpoint of com_users lacks access checks, allowing calls from unauthenticated users.

Missing Authentication for Critical Function

An issue was discovered in Joomla! before 3.9.4

CVE-2019-9711 6.1 - Medium - March 12, 2019

An issue was discovered in Joomla! before 3.9.4. The item_title layout in edit views lacks escaping, leading to XSS.

XSS

An issue was discovered in Joomla! before 3.9.4

CVE-2019-9712 6.1 - Medium - March 12, 2019

An issue was discovered in Joomla! before 3.9.4. The JSON handler in com_config lacks input validation, leading to XSS.

XSS

An issue was discovered in Joomla! before 3.9.4

CVE-2019-9713 7.5 - High - March 12, 2019

An issue was discovered in Joomla! before 3.9.4. The sample data plugins lack ACL checks, allowing unauthorized access.

AuthZ

An issue was discovered in Joomla! before 3.9.4

CVE-2019-9714 6.1 - Medium - March 12, 2019

An issue was discovered in Joomla! before 3.9.4. The media form field lacks escaping, leading to XSS.

XSS

An issue was discovered in Joomla! before 3.9.3

CVE-2019-7739 6.1 - Medium - February 12, 2019

An issue was discovered in Joomla! before 3.9.3. The "No Filtering" textfilter overrides child settings in the Global Configuration. This is intended behavior. However, it might be unexpected for the user because the configuration dialog lacks an additional message to explain this.

An issue was discovered in Joomla! before 3.9.3

CVE-2019-7740 6.1 - Medium - February 12, 2019

An issue was discovered in Joomla! before 3.9.3. Inadequate parameter handling in JavaScript code (core.js writeDynaList) could lead to an XSS attack vector.

XSS

An issue was discovered in Joomla! before 3.9.3

CVE-2019-7741 6.1 - Medium - February 12, 2019

An issue was discovered in Joomla! before 3.9.3. Inadequate checks at the Global Configuration helpurl settings allowed stored XSS.

XSS

An issue was discovered in Joomla! before 3.9.3

CVE-2019-7742 6.1 - Medium - February 12, 2019

An issue was discovered in Joomla! before 3.9.3. A combination of specific web server configurations, in connection with specific file types and browser-side MIME-type sniffing, causes an XSS attack vector.

XSS

An issue was discovered in Joomla! before 3.9.3

CVE-2019-7743 9.8 - Critical - February 12, 2019

An issue was discovered in Joomla! before 3.9.3. The phar:// stream wrapper can be used for objection injection attacks because there is no protection mechanism (such as the TYPO3 PHAR stream wrapper) to prevent use of the phar:// handler for non .phar-files.

Marshaling, Unmarshaling

An issue was discovered in Joomla! before 3.9.3

CVE-2019-7744 6.1 - Medium - February 12, 2019

An issue was discovered in Joomla! before 3.9.3. Inadequate filtering on URL fields in various core components could lead to an XSS vulnerability.

XSS

An issue was discovered in Joomla! before 3.9.2

CVE-2019-6261 6.1 - Medium - January 16, 2019

An issue was discovered in Joomla! before 3.9.2. Inadequate escaping in com_contact leads to a stored XSS vulnerability.

XSS

An issue was discovered in Joomla! before 3.9.2

CVE-2019-6262 5.4 - Medium - January 16, 2019

An issue was discovered in Joomla! before 3.9.2. Inadequate checks of the Global Configuration helpurl settings allowed stored XSS.

XSS

An issue was discovered in Joomla! before 3.9.2

CVE-2019-6263 4.8 - Medium - January 16, 2019

An issue was discovered in Joomla! before 3.9.2. Inadequate checks of the Global Configuration Text Filter settings allowed stored XSS.

XSS

An issue was discovered in Joomla! before 3.9.2

CVE-2019-6264 6.1 - Medium - January 16, 2019

An issue was discovered in Joomla! before 3.9.2. Inadequate escaping in mod_banners leads to a stored XSS vulnerability.

XSS

An issue was discovered in Joomla! before 3.8.13

CVE-2018-17855 8.8 - High - October 09, 2018

An issue was discovered in Joomla! before 3.8.13. If an attacker gets access to the mail account of an user who can approve admin verifications in the registration process, he can activate himself.

Improper Privilege Management

An issue was discovered in Joomla! before 3.8.13

CVE-2018-17856 7.2 - High - October 09, 2018

An issue was discovered in Joomla! before 3.8.13. com_joomlaupdate allows the execution of arbitrary code. The default ACL config enabled the ability of Administrator-level users to access com_joomlaupdate and trigger code execution.

An issue was discovered in Joomla! before 3.8.13

CVE-2018-17857 4.3 - Medium - October 09, 2018

An issue was discovered in Joomla! before 3.8.13. Inadequate checks on the tags search fields can lead to an access level violation.

AuthZ

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Joomla or by Joomla? Click the Watch button to subscribe.

Joomla
Vendor

Joomla
Product

subscribe