Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
joomla joomla vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-40629
SQLi vulnerability in LMS Lite component for Joomla.
King-products Lms King Lite
9.8
CVSSv3
CVE-2023-40630
Unauthenticated LFI/SSRF in JCDashboards component for Joomla.
Joomcode Jcdashboard
9.8
CVSSv3
CVE-2023-49707
SQLi vulnerability in S5 Register module for Joomla.
Joomlart S5 Register
9.8
CVSSv3
CVE-2023-49708
SQLi vulnerability in Starshop component for Joomla.
Joomstar Starshop
9.8
CVSSv3
CVE-2023-39970
Unrestricted Upload of File with Dangerous Type vulnerability in AcyMailing component for Joomla. It allows remote code execution.
Acyba Acymailing Starter
9.8
CVSSv3
CVE-2023-23753
The 'Visforms Base Package for Joomla 3' extension is vulnerable to SQL Injection as concatenation is used to construct an SQL Query. An attacker can interact with the database and could be able to read, modify and delete data on it.
Vi-solutions Visforms
9.8
CVSSv3
CVE-2023-28731
AnyMailing Joomla Plugin is vulnerable to unauthenticated remote code execution, when being granted access to the campaign's creation on front-office due to unrestricted file upload allowing PHP code to be injected. This issue affects AnyMailing Joomla Plugin Enterprise in v...
Acymailing Acymailing
9.8
CVSSv3
CVE-2016-15016
A vulnerability was found in mrtnmtth joomla_mod_einsatz_stats up to 0.2. It has been classified as critical. This affects the function getStatsByType of the file helper.php. The manipulation of the argument year leads to sql injection. Upgrading to version 0.3 is able to address...
Joomla Mod Einsatz Stats Project Joomla Mod Einsatz Stats
9.8
CVSSv3
CVE-2010-10003
A vulnerability classified as critical was found in gesellix titlelink on Joomla. Affected by this vulnerability is an unknown functionality of the file plugin_content_title.php. The manipulation of the argument phrase leads to sql injection. The patch is named b4604e523853965fa9...
Titlelink Project Titlelink
9.8
CVSSv3
CVE-2022-23795
An issue exists in Joomla! 2.5.0 up to and including 3.10.6 & 4.0.0 up to and including 4.1.0. A user row was not bound to a specific authentication mechanism which could under very special circumstances allow an account takeover.
Joomla Joomla\\!
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »