Joomla
By the Year
In 2024 there have been 5 vulnerabilities in Joomla with an average score of 6.0 out of ten. Last year Joomla had 6 security vulnerabilities published. At the current rates, it appears that the number of vulnerabilities last year and this year may equal out. Last year, the average CVE base score was greater by 0.21
Year | Vulnerabilities | Average Score |
---|---|---|
2024 | 5 | 5.96 |
2023 | 6 | 6.17 |
2022 | 13 | 6.88 |
2021 | 28 | 6.82 |
2020 | 31 | 6.83 |
2019 | 29 | 6.88 |
2018 | 24 | 6.93 |
It may take a day or so for new Joomla vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Joomla Security Vulnerabilities
The wrapper extensions do not correctly validate inputs
CVE-2024-26279
6.1 - Medium
- July 09, 2024
The wrapper extensions do not correctly validate inputs, leading to XSS vectors.
XSS
The Custom Fields component not correctly filter inputs
CVE-2024-26278
6.1 - Medium
- July 09, 2024
The Custom Fields component not correctly filter inputs, leading to a XSS vector.
XSS
Improper handling of input could lead to an XSS vector in the StringHelper::truncate method.
CVE-2024-21731
6.1 - Medium
- July 09, 2024
Improper handling of input could lead to an XSS vector in the StringHelper::truncate method.
XSS
The fancyselect list field layout does not correctly escape inputs
CVE-2024-21730
5.4 - Medium
- July 09, 2024
The fancyselect list field layout does not correctly escape inputs, leading to a self-XSS vector.
XSS
Inadequate input validation leads to XSS vulnerabilities in the accessiblemedia field.
CVE-2024-21729
6.1 - Medium
- July 09, 2024
Inadequate input validation leads to XSS vulnerabilities in the accessiblemedia field.
XSS
The language file parsing process could be manipulated to expose environment variables
CVE-2023-40626
7.5 - High
- November 29, 2023
The language file parsing process could be manipulated to expose environment variables. Environment variables might contain sensible information.
An issue was discovered in Joomla! 4.2.0 through 4.3.1
CVE-2023-23755
7.5 - High
- May 30, 2023
An issue was discovered in Joomla! 4.2.0 through 4.3.1. The lack of rate limiting allowed brute force attacks against MFA methods.
Improper Restriction of Excessive Authentication Attempts
An issue was discovered in Joomla! 4.2.0 through 4.3.1
CVE-2023-23754
6.1 - Medium
- May 30, 2023
An issue was discovered in Joomla! 4.2.0 through 4.3.1. Lack of input validation caused an open redirect and XSS issue within the new mfa selection screen.
Improper Input Validation
An issue was discovered in Joomla! 4.0.0 through 4.2.7
CVE-2023-23752
5.3 - Medium
- February 16, 2023
An issue was discovered in Joomla! 4.0.0 through 4.2.7. An improper access check allows unauthorized access to webservice endpoints.
An issue was discovered in Joomla! 4.0.0 through 4.2.6
CVE-2023-23750
6.3 - Medium
- February 01, 2023
An issue was discovered in Joomla! 4.0.0 through 4.2.6. A missing token check causes a CSRF vulnerability in the handling of post-installation messages.
Session Riding
An issue was discovered in Joomla! 4.0.0 through 4.2.4
CVE-2023-23751
4.3 - Medium
- February 01, 2023
An issue was discovered in Joomla! 4.0.0 through 4.2.4. A missing ACL check allows non super-admin users to access com_actionlogs.
AuthZ
An issue was discovered in Joomla! 4.0.0 through 4.2.4
CVE-2022-27914
6.1 - Medium
- November 08, 2022
An issue was discovered in Joomla! 4.0.0 through 4.2.4. Inadequate filtering of potentially malicious user input leads to reflected XSS vulnerabilities in com_media.
XSS
An issue was discovered in Joomla! 4.2.0 through 4.2.3
CVE-2022-27913
6.1 - Medium
- October 25, 2022
An issue was discovered in Joomla! 4.2.0 through 4.2.3. Inadequate filtering of potentially malicious user input leads to reflected XSS vulnerabilities in various components.
XSS
An issue was discovered in Joomla! 4.0.0 through 4.2.3
CVE-2022-27912
5.3 - Medium
- October 25, 2022
An issue was discovered in Joomla! 4.0.0 through 4.2.3. Sites with publicly enabled debug mode exposed data of previous requests.
Information Disclosure
An issue was discovered in Joomla! 4.2.0
CVE-2022-27911
5.3 - Medium
- August 31, 2022
An issue was discovered in Joomla! 4.2.0. Multiple Full Path Disclosures because of missing '_JEXEC or die check' caused by the PSR12 changes.
An issue was discovered in Joomla! 4.0.0 through 4.1.0
CVE-2022-23801
6.1 - Medium
- March 30, 2022
An issue was discovered in Joomla! 4.0.0 through 4.1.0. Possible XSS atack vector through SVG embedding in com_media.
XSS
An issue was discovered in Joomla! 4.0.0 through 4.1.0
CVE-2022-23800
6.1 - Medium
- March 30, 2022
An issue was discovered in Joomla! 4.0.0 through 4.1.0. Inadequate content filtering leads to XSS vulnerabilities in various components.
XSS
An issue was discovered in Joomla! 4.0.0 through 4.1.0
CVE-2022-23799
9.8 - Critical
- March 30, 2022
An issue was discovered in Joomla! 4.0.0 through 4.1.0. Under specific circumstances, JInput pollutes method-specific input bags with $_REQUEST data.
An issue was discovered in Joomla! 2.5.0 through 3.10.6 & 4.0.0 through 4.1.0
CVE-2022-23798
6.1 - Medium
- March 30, 2022
An issue was discovered in Joomla! 2.5.0 through 3.10.6 & 4.0.0 through 4.1.0. Inadequate validation of URLs could result into an invalid check whether an redirect URL is internal or not.
Open Redirect
An issue was discovered in Joomla! 3.0.0 through 3.10.6 & 4.0.0 through 4.1.0
CVE-2022-23797
9.8 - Critical
- March 30, 2022
An issue was discovered in Joomla! 3.0.0 through 3.10.6 & 4.0.0 through 4.1.0. Inadequate filtering on the selected Ids on an request could resulted into an possible SQL injection.
SQL Injection
An issue was discovered in Joomla! 3.7.0 through 3.10.6
CVE-2022-23796
6.1 - Medium
- March 30, 2022
An issue was discovered in Joomla! 3.7.0 through 3.10.6. Lack of input validation could allow an XSS attack using com_fields.
XSS
An issue was discovered in Joomla! 2.5.0 through 3.10.6 & 4.0.0 through 4.1.0
CVE-2022-23795
9.8 - Critical
- March 30, 2022
An issue was discovered in Joomla! 2.5.0 through 3.10.6 & 4.0.0 through 4.1.0. A user row was not bound to a specific authentication mechanism which could under very special circumstances allow an account takeover.
authentification
An issue was discovered in Joomla! 3.0.0 through 3.10.6 & 4.0.0 through 4.1.0
CVE-2022-23794
5.3 - Medium
- March 30, 2022
An issue was discovered in Joomla! 3.0.0 through 3.10.6 & 4.0.0 through 4.1.0. Uploading a file name of an excess length causes the error. This error brings up the screen with the path of the source code of the web application.
Generation of Error Message Containing Sensitive Information
An issue was discovered in Joomla! 3.0.0 through 3.10.6 & 4.0.0 through 4.1.0
CVE-2022-23793
7.5 - High
- March 30, 2022
An issue was discovered in Joomla! 3.0.0 through 3.10.6 & 4.0.0 through 4.1.0. Extracting an specifilcy crafted tar package could write files outside of the intended path.
Directory traversal
An issue was discovered in Joomla! 4.0.0
CVE-2021-26040
9.1 - Critical
- August 24, 2021
An issue was discovered in Joomla! 4.0.0. The media manager does not correctly check the user's permissions before executing a file deletion command.
AuthZ
An issue was discovered in Joomla! 3.0.0 through 3.9.27
CVE-2021-26039
6.1 - Medium
- July 07, 2021
An issue was discovered in Joomla! 3.0.0 through 3.9.27. Inadequate escaping in the imagelist view of com_media leads to a XSS vulnerability.
XSS
An issue was discovered in Joomla! 3.0.0 through 3.9.27
CVE-2021-26035
6.1 - Medium
- July 07, 2021
An issue was discovered in Joomla! 3.0.0 through 3.9.27. Inadequate escaping in the rules field of the JForm API leads to a XSS vulnerability.
XSS
An issue was discovered in Joomla! 2.5.0 through 3.9.27
CVE-2021-26038
7.5 - High
- July 07, 2021
An issue was discovered in Joomla! 2.5.0 through 3.9.27. Install action in com_installer lack the required hardcoded ACL checks for superusers. A default system is not affected cause the default ACL for com_installer is limited to super users already.
Improper Check for Unusual or Exceptional Conditions
An issue was discovered in Joomla! 2.5.0 through 3.9.27
CVE-2021-26037
5.3 - Medium
- July 07, 2021
An issue was discovered in Joomla! 2.5.0 through 3.9.27. CMS functions did not properly termine existing user sessions when a user's password was changed or the user was blocked.
Insufficient Session Expiration
An issue was discovered in Joomla! 2.5.0 through 3.9.27
CVE-2021-26036
7.5 - High
- July 07, 2021
An issue was discovered in Joomla! 2.5.0 through 3.9.27. Missing validation of input could lead to a broken usergroups table.
Improper Input Validation
Joomla! Core is prone to a security bypass vulnerability
CVE-2010-1435
9.8 - Critical
- June 21, 2021
Joomla! Core is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently retrieve password reset tokens from the database through an already existing SQL injection vector. Joomla! Core versions 1.5.x ranging from 1.5.0 and up to and including 1.5.15 are vulnerable.
AuthZ
Joomla! Core is prone to a session fixation vulnerability
CVE-2010-1434
7.5 - High
- June 21, 2021
Joomla! Core is prone to a session fixation vulnerability. An attacker may leverage this issue to hijack an arbitrary session and gain access to sensitive information, which may help in launching further attacks. Joomla! Core versions 1.5.x ranging from 1.5.0 and up to and including 1.5.15 are vulnerable.
Session Fixation
Joomla! Core is prone to a vulnerability
CVE-2010-1433
9.8 - Critical
- June 21, 2021
Joomla! Core is prone to a vulnerability that lets attackers upload arbitrary files because the application fails to properly verify user-supplied input. An attacker can exploit this vulnerability to upload arbitrary code and run it in the context of the webserver process. This may facilitate unauthorized access or privilege escalation; other attacks are also possible. Joomla! Core versions 1.5.x ranging from 1.5.0 and up to and including 1.5.15 are vulnerable.
Unrestricted File Upload
Joomla! Core is prone to an information disclosure vulnerability
CVE-2010-1432
7.5 - High
- June 21, 2021
Joomla! Core is prone to an information disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may help in launching further attacks. Joomla! Core versions 1.5.x ranging from 1.5.0 and up to and including 1.5.15 are vulnerable.
Information Disclosure
An issue was discovered in Joomla! 3.0.0 through 3.9.26
CVE-2021-26034
6.5 - Medium
- May 26, 2021
An issue was discovered in Joomla! 3.0.0 through 3.9.26. A missing token check causes a CSRF vulnerability in data download endpoints in com_banners and com_sysinfo.
Session Riding
An issue was discovered in Joomla! 3.0.0 through 3.9.26
CVE-2021-26033
6.5 - Medium
- May 26, 2021
An issue was discovered in Joomla! 3.0.0 through 3.9.26. A missing token check causes a CSRF vulnerability in the AJAX reordering endpoint.
Session Riding
An issue was discovered in Joomla! 3.0.0 through 3.9.26
CVE-2021-26032
6.1 - Medium
- May 26, 2021
An issue was discovered in Joomla! 3.0.0 through 3.9.26. HTML was missing in the executable block list of MediaHelper::canUpload, leading to XSS attack vectors.
XSS
An issue was discovered in Joomla! 3.0.0 through 3.9.25
CVE-2021-26031
5.3 - Medium
- April 14, 2021
An issue was discovered in Joomla! 3.0.0 through 3.9.25. Inadequate filters on module layout settings could lead to an LFI.
An issue was discovered in Joomla! 3.0.0 through 3.9.25
CVE-2021-26030
6.1 - Medium
- April 14, 2021
An issue was discovered in Joomla! 3.0.0 through 3.9.25. Inadequate escaping allowed XSS attacks using the logo parameter of the default templates on error page
XSS
An issue was discovered in Joomla! 3.2.0 through 3.9.24
CVE-2021-23126
5.3 - Medium
- March 04, 2021
An issue was discovered in Joomla! 3.2.0 through 3.9.24. Usage of the insecure rand() function within the process of generating the 2FA secret.
PRNG
An issue was discovered in Joomla! 3.2.0 through 3.9.24
CVE-2021-23127
9.1 - Critical
- March 04, 2021
An issue was discovered in Joomla! 3.2.0 through 3.9.24. Usage of an insufficient length for the 2FA secret accoring to RFC 4226 of 10 bytes vs 20 bytes.
An issue was discovered in Joomla! 3.2.0 through 3.9.24
CVE-2021-23128
9.1 - Critical
- March 04, 2021
An issue was discovered in Joomla! 3.2.0 through 3.9.24. The core shipped but unused randval implementation within FOF (FOFEncryptRandval) used an potential insecure implemetation. That has now been replaced with a call to 'random_bytes()' and its backport that is shipped within random_compat.
An issue was discovered in Joomla! 2.5.0 through 3.9.24
CVE-2021-23129
6.1 - Medium
- March 04, 2021
An issue was discovered in Joomla! 2.5.0 through 3.9.24. Missing filtering of messages showed to users that could lead to xss issues.
XSS
An issue was discovered in Joomla! 2.5.0 through 3.9.24
CVE-2021-23130
6.1 - Medium
- March 04, 2021
An issue was discovered in Joomla! 2.5.0 through 3.9.24. Missing filtering of feed fields could lead to xss issues.
XSS
An issue was discovered in Joomla! 3.2.0 through 3.9.24
CVE-2021-23131
7.5 - High
- March 04, 2021
An issue was discovered in Joomla! 3.2.0 through 3.9.24. Missing input validation within the template manager.
Improper Input Validation
An issue was discovered in Joomla! 3.0.0 through 3.9.24
CVE-2021-23132
7.5 - High
- March 04, 2021
An issue was discovered in Joomla! 3.0.0 through 3.9.24. com_media allowed paths that are not intended for image uploads
An issue was discovered in Joomla! 3.0.0 through 3.9.24
CVE-2021-26027
5.3 - Medium
- March 04, 2021
An issue was discovered in Joomla! 3.0.0 through 3.9.24. Incorrect ACL checks could allow unauthorized change of the category for an article.
AuthZ
An issue was discovered in Joomla! 3.0.0 through 3.9.24
CVE-2021-26028
5.5 - Medium
- March 04, 2021
An issue was discovered in Joomla! 3.0.0 through 3.9.24. Extracting an specifilcy crafted zip package could write files outside of the intended path.
Directory traversal
An issue was discovered in Joomla! 1.6.0 through 3.9.24
CVE-2021-26029
5.3 - Medium
- March 04, 2021
An issue was discovered in Joomla! 1.6.0 through 3.9.24. Inadequate filtering of form contents could allow to overwrite the author field.
An issue was discovered in Joomla! 3.0.0 through 3.9.23
CVE-2021-23123
5.3 - Medium
- January 12, 2021
An issue was discovered in Joomla! 3.0.0 through 3.9.23. The lack of ACL checks in the orderPosition endpoint of com_modules leak names of unpublished and/or inaccessible modules.
AuthZ
An issue was discovered in Joomla! 3.9.0 through 3.9.23
CVE-2021-23124
6.1 - Medium
- January 12, 2021
An issue was discovered in Joomla! 3.9.0 through 3.9.23. The lack of escaping in mod_breadcrumbs aria-label attribute allows XSS attacks.
XSS
An issue was discovered in Joomla! 3.1.0 through 3.9.23
CVE-2021-23125
6.1 - Medium
- January 12, 2021
An issue was discovered in Joomla! 3.1.0 through 3.9.23. The lack of escaping of image-related parameters in multiple com_tags views cause lead to XSS attack vectors.
XSS
An issue was discovered in Joomla! 2.5.0 through 3.9.22
CVE-2020-35610
7.5 - High
- December 28, 2020
An issue was discovered in Joomla! 2.5.0 through 3.9.22. The autosuggestion feature of com_finder did not respect the access level of the corresponding terms.
An issue was discovered in Joomla! 2.5.0 through 3.9.22
CVE-2020-35611
7.5 - High
- December 28, 2020
An issue was discovered in Joomla! 2.5.0 through 3.9.22. The globlal configuration page does not remove secrets from the HTML output, disclosing the current values.
Information Disclosure
An issue was discovered in Joomla! 2.5.0 through 3.9.22
CVE-2020-35612
7.5 - High
- December 28, 2020
An issue was discovered in Joomla! 2.5.0 through 3.9.22. The folder parameter of mod_random_image lacked input validation, leading to a path traversal vulnerability.
Directory traversal
An issue was discovered in Joomla! 3.0.0 through 3.9.22
CVE-2020-35613
9.8 - Critical
- December 28, 2020
An issue was discovered in Joomla! 3.0.0 through 3.9.22. Improper filter blacklist configuration leads to a SQL injection vulnerability in the backend user list.
SQL Injection
An issue was discovered in Joomla! 3.9.0 through 3.9.22
CVE-2020-35614
5.3 - Medium
- December 28, 2020
An issue was discovered in Joomla! 3.9.0 through 3.9.22. Improper handling of the username leads to a user enumeration attack vector in the backend login page.
Information Disclosure
An issue was discovered in Joomla! 2.5.0 through 3.9.22
CVE-2020-35615
6.3 - Medium
- December 28, 2020
An issue was discovered in Joomla! 2.5.0 through 3.9.22. A missing token check in the emailexport feature of com_privacy causes a CSRF vulnerability.
Session Riding
An issue was discovered in Joomla! 1.7.0 through 3.9.22
CVE-2020-35616
7.5 - High
- December 28, 2020
An issue was discovered in Joomla! 1.7.0 through 3.9.22. Lack of input validation while handling ACL rulesets can cause write ACL violations.
Improper Input Validation
An issue was discovered in Joomla! before 3.9.21
CVE-2020-24598
6.1 - Medium
- August 26, 2020
An issue was discovered in Joomla! before 3.9.21. Lack of input validation in the vote feature of com_content leads to an open redirect.
Open Redirect
An issue was discovered in Joomla! before 3.9.21
CVE-2020-24599
6.1 - Medium
- August 26, 2020
An issue was discovered in Joomla! before 3.9.21. Lack of escaping in mod_latestactions allows XSS attacks.
XSS
An issue was discovered in Joomla! through 3.9.19
CVE-2020-15695
6.3 - Medium
- July 15, 2020
An issue was discovered in Joomla! through 3.9.19. A missing token check in the remove request section of com_privacy causes a CSRF vulnerability.
Session Riding
An issue was discovered in Joomla! through 3.9.19
CVE-2020-15696
6.1 - Medium
- July 15, 2020
An issue was discovered in Joomla! through 3.9.19. Lack of input filtering and escaping allows XSS attacks in mod_random_image.
XSS
An issue was discovered in Joomla! through 3.9.19
CVE-2020-15697
4.3 - Medium
- July 15, 2020
An issue was discovered in Joomla! through 3.9.19. Internal read-only fields in the User table class could be modified by users.
Incorrect Permission Assignment for Critical Resource
An issue was discovered in Joomla! through 3.9.19
CVE-2020-15698
5.3 - Medium
- July 15, 2020
An issue was discovered in Joomla! through 3.9.19. Inadequate filtering on the system information screen could expose Redis or proxy credentials
Information Disclosure
An issue was discovered in Joomla! through 3.9.19
CVE-2020-15699
5.3 - Medium
- July 15, 2020
An issue was discovered in Joomla! through 3.9.19. Missing validation checks on the usergroups table object can result in a broken site configuration.
Insufficient Verification of Data Authenticity
An issue was discovered in Joomla! through 3.9.19
CVE-2020-15700
6.3 - Medium
- July 15, 2020
An issue was discovered in Joomla! through 3.9.19. A missing token check in the ajax_install endpoint of com_installer causes a CSRF vulnerability.
Session Riding
In Joomla! before 3.9.19
CVE-2020-13760
8.8 - High
- June 02, 2020
In Joomla! before 3.9.19, missing token checks in com_postinstall lead to CSRF.
Session Riding
In Joomla! before 3.9.19, lack of input validation in the heading tag option of the "Articles - Newsflash" and "Articles - Categories" modules
CVE-2020-13761
6.1 - Medium
- June 02, 2020
In Joomla! before 3.9.19, lack of input validation in the heading tag option of the "Articles - Newsflash" and "Articles - Categories" modules allows XSS.
XSS
In Joomla! before 3.9.19, incorrect input validation of the module tag option in com_modules
CVE-2020-13762
6.1 - Medium
- June 02, 2020
In Joomla! before 3.9.19, incorrect input validation of the module tag option in com_modules allows XSS.
XSS
In Joomla! before 3.9.19
CVE-2020-13763
7.5 - High
- June 02, 2020
In Joomla! before 3.9.19, the default settings of the global textfilter configuration do not block HTML inputs for Guest users.
Improper Preservation of Permissions
An issue was discovered in Joomla! before 3.9.17
CVE-2020-11889
5.3 - Medium
- April 21, 2020
An issue was discovered in Joomla! before 3.9.17. Incorrect ACL checks in the access level section of com_users allow the unauthorized deletion of usergroups.
AuthZ
An issue was discovered in Joomla! before 3.9.17
CVE-2020-11890
5.3 - Medium
- April 21, 2020
An issue was discovered in Joomla! before 3.9.17. Improper input validations in the usergroup table class could lead to a broken ACL configuration.
Improper Input Validation
An issue was discovered in Joomla! before 3.9.17
CVE-2020-11891
5.3 - Medium
- April 21, 2020
An issue was discovered in Joomla! before 3.9.17. Incorrect ACL checks in the access level section of com_users allow the unauthorized editing of usergroups.
AuthZ
An issue was discovered in Joomla! before 3.9.16
CVE-2020-10238
7.5 - High
- March 16, 2020
An issue was discovered in Joomla! before 3.9.16. Various actions in com_templates lack the required ACL checks, leading to various potential attack vectors.
Exposure of Resource to Wrong Sphere
An issue was discovered in Joomla! before 3.9.16
CVE-2020-10239
8.8 - High
- March 16, 2020
An issue was discovered in Joomla! before 3.9.16. Incorrect Access Control in the SQL fieldtype of com_fields allows access for non-superadmin users.
AuthZ
An issue was discovered in Joomla! before 3.9.16
CVE-2020-10240
5.3 - Medium
- March 16, 2020
An issue was discovered in Joomla! before 3.9.16. Missing length checks in the user table can lead to the creation of users with duplicate usernames and/or email addresses.
Improper Input Validation
An issue was discovered in Joomla! before 3.9.16
CVE-2020-10241
8.8 - High
- March 16, 2020
An issue was discovered in Joomla! before 3.9.16. Missing token checks in the image actions of com_templates lead to CSRF.
Session Riding
An issue was discovered in Joomla! before 3.9.16
CVE-2020-10242
6.1 - Medium
- March 16, 2020
An issue was discovered in Joomla! before 3.9.16. Inadequate handling of CSS selectors in the Protostar and Beez3 JavaScript allows XSS attacks.
XSS
An issue was discovered in Joomla! before 3.9.16
CVE-2020-10243
9.8 - Critical
- March 16, 2020
An issue was discovered in Joomla! before 3.9.16. The lack of type casting of a variable in a SQL statement leads to a SQL injection vulnerability in the Featured Articles frontend menutype.
SQL Injection
An issue was discovered in Joomla! before 3.9.15
CVE-2020-8419
8.8 - High
- January 28, 2020
An issue was discovered in Joomla! before 3.9.15. Missing token checks in the batch actions of various components cause CSRF vulnerabilities.
Session Riding
An issue was discovered in Joomla! before 3.9.15
CVE-2020-8420
8.8 - High
- January 28, 2020
An issue was discovered in Joomla! before 3.9.15. A missing CSRF token check in the LESS compiler of com_templates causes a CSRF vulnerability.
Session Riding
An issue was discovered in Joomla! before 3.9.15
CVE-2020-8421
6.1 - Medium
- January 28, 2020
An issue was discovered in Joomla! before 3.9.15. Inadequate escaping of usernames allows XSS attacks in com_actionlogs.
XSS
In Joomla! before 3.9.14
CVE-2019-19845
5.3 - Medium
- December 18, 2019
In Joomla! before 3.9.14, a missing access check in framework files could lead to a path disclosure.
Directory traversal
In Joomla! before 3.9.14
CVE-2019-19846
9.8 - Critical
- December 18, 2019
In Joomla! before 3.9.14, the lack of validation of configuration parameters used in SQL queries caused various SQL injection vectors.
SQL Injection
An issue was discovered in Joomla! before 3.9.13
CVE-2019-18650
8.8 - High
- November 06, 2019
An issue was discovered in Joomla! before 3.9.13. A missing token check in com_template causes a CSRF vulnerability.
Session Riding
An issue was discovered in Joomla! before 3.9.13
CVE-2019-18674
5.3 - Medium
- November 06, 2019
An issue was discovered in Joomla! before 3.9.13. A missing access check in the phputf8 mapping files could lead to a path disclosure.
AuthZ
In Joomla! 3.x before 3.9.12, inadequate escaping
CVE-2019-16725
6.1 - Medium
- September 24, 2019
In Joomla! 3.x before 3.9.12, inadequate escaping allowed XSS attacks using the logo parameter of the default templates.
XSS
In Joomla! before 3.9.11, inadequate checks in com_contact could
CVE-2019-15028
5.3 - Medium
- August 14, 2019
In Joomla! before 3.9.11, inadequate checks in com_contact could allow mail submission in disabled forms.
In Joomla! 3.9.7 and 3.9.8, inadequate filtering
CVE-2019-14654
8.8 - High
- August 05, 2019
In Joomla! 3.9.7 and 3.9.8, inadequate filtering allows users authorised to create custom fields to manipulate the filtering options and inject an unvalidated option. In other words, the filter attribute in subform fields allows remote code execution. This is fixed in 3.9.9.
An issue was discovered in Joomla! before 3.9.7
CVE-2019-12764
6.5 - Medium
- June 11, 2019
An issue was discovered in Joomla! before 3.9.7. The update server URL of com_joomlaupdate can be manipulated by non Super-Admin users.
An issue was discovered in Joomla! before 3.9.7
CVE-2019-12765
9.8 - Critical
- June 11, 2019
An issue was discovered in Joomla! before 3.9.7. The CSV export of com_actionslogs is vulnerable to CSV injection.
CSV Injection
An issue was discovered in Joomla! before 3.9.7
CVE-2019-12766
6.1 - Medium
- June 11, 2019
An issue was discovered in Joomla! before 3.9.7. The subform fieldtype does not sufficiently filter or validate input of subfields. This leads to XSS attack vectors.
XSS
An issue was discovered in Joomla! before 3.9.6
CVE-2019-11809
6.1 - Medium
- May 20, 2019
An issue was discovered in Joomla! before 3.9.6. The debug views of com_users do not properly escape user supplied data, which leads to a potential XSS attack vector.
XSS
The PharStreamWrapper (aka phar-stream-wrapper) package 2.x before 2.1.1 and 3.x before 3.1.1 for TYPO3 does not prevent directory traversal, which
CVE-2019-11831
9.8 - Critical
- May 09, 2019
The PharStreamWrapper (aka phar-stream-wrapper) package 2.x before 2.1.1 and 3.x before 3.1.1 for TYPO3 does not prevent directory traversal, which allows attackers to bypass a deserialization protection mechanism, as demonstrated by a phar:///path/bad.phar/../good.phar URL.
Directory traversal
jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {},
CVE-2019-11358
6.1 - Medium
- April 20, 2019
jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
Prototype Pollution
An issue was discovered in Joomla! before 3.9.5
CVE-2019-10945
9.8 - Critical
- April 10, 2019
An issue was discovered in Joomla! before 3.9.5. The Media Manager component does not properly sanitize the folder parameter, allowing attackers to act outside the media manager root directory.
Directory traversal
An issue was discovered in Joomla! before 3.9.5
CVE-2019-10946
7.5 - High
- April 10, 2019
An issue was discovered in Joomla! before 3.9.5. The "refresh list of helpsites" endpoint of com_users lacks access checks, allowing calls from unauthenticated users.
Missing Authentication for Critical Function
An issue was discovered in Joomla! before 3.9.4
CVE-2019-9711
6.1 - Medium
- March 12, 2019
An issue was discovered in Joomla! before 3.9.4. The item_title layout in edit views lacks escaping, leading to XSS.
XSS
An issue was discovered in Joomla! before 3.9.4
CVE-2019-9712
6.1 - Medium
- March 12, 2019
An issue was discovered in Joomla! before 3.9.4. The JSON handler in com_config lacks input validation, leading to XSS.
XSS