Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
joomla expose vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2007-3932
uploadimg.php in the Expose RC35 and previous versions (com_expose) component for Joomla! sends an error message but does not exit when it detects an attempt to upload a non-JPEG file, which allows remote malicious users to upload and execute arbitrary PHP code in the img/ folder...
Joomla Expose
1 EDB exploit
NA
CVE-2023-40626
The language file parsing process could be manipulated to expose environment variables. Environment variables might contain sensible information.
Joomla Joomla\\! 5.0.0
Joomla Joomla\\!
5
CVSSv2
CVE-2020-15698
An issue exists in Joomla! up to and including 3.9.19. Inadequate filtering on the system information screen could expose Redis or proxy credentials
Joomla Joomla\\!
NA
CVE-2024-21722
The MFA management features did not properly terminate existing user sessions when a user's MFA methods have been modified.
1 Article
NA
CVE-2024-21723
Inadequate parsing of URLs could result into an open redirect.
1 Article
NA
CVE-2024-21724
Inadequate input validation for media selection fields lead to XSS vulnerabilities in various extensions.
1 Article
NA
CVE-2024-21725
Inadequate escaping of mail addresses lead to XSS vulnerabilities in various components.
1 Article
NA
CVE-2024-21726
Inadequate content filtering leads to XSS vulnerabilities in various components.
1 Article
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started