Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
joomla! vulnerabilities and exploits
(subscribe to this query)
516
VMScore
CVE-2008-4104
Multiple open redirect vulnerabilities in Joomla! 1.5 prior to 1.5.7 allow remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a "passed in" URL.
Joomla Joomla 1.5
Joomla Joomla 1.5.1
Joomla Joomla 1.5.2
Joomla Joomla 1.5.3
Joomla Joomla 1.5.6
Joomla Joomla 1.5.4
Joomla Joomla 1.5.5
668
VMScore
CVE-2008-4105
JRequest in Joomla! 1.5 prior to 1.5.7 does not sanitize variables that were set with JRequest::setVar, which allows remote malicious users to conduct "variable injection" attacks and have unspecified other impact.
Joomla Joomla 1.5
Joomla Joomla 1.5.1
Joomla Joomla 1.5.2
Joomla Joomla 1.5.3
Joomla Joomla 1.5.4
Joomla Joomla 1.5.5
Joomla Joomla 1.5.6
890
VMScore
CVE-2006-0303
Multiple unspecified vulnerabilities in the (1) publishing component, (2) Contact Component, (3) TinyMCE Compressor, and (4) other components in Joomla! 1.0.5 and previous versions have unknown impact and attack vectors.
Joomla Joomla 1.0
Joomla Joomla 1.0.2
Joomla Joomla 1.0.1
Joomla Joomla 1.0.3
Joomla Joomla 1.0.4
Joomla Joomla 1.0.5
383
VMScore
CVE-2017-14595
In Joomla! prior to 3.8.0, a logic bug in a SQL query could lead to the disclosure of article intro texts when these articles are in the archived state.
Joomla Joomla\\! 3.7.1
Joomla Joomla\\! 3.7.0
Joomla Joomla\\! 3.7.2
Joomla Joomla\\! 3.7.3
Joomla Joomla\\! 3.7.4
Joomla Joomla\\! 3.7.5
445
VMScore
CVE-2012-0837
Joomla! 1.7.x prior to 1.7.5 and 2.5.x prior to 2.5.1 allows malicious users to obtain the installation path via unspecified vectors related to "administrator."
Joomla Joomla\\! 1.7.0
Joomla Joomla\\! 1.7.1
Joomla Joomla\\! 1.7.2
Joomla Joomla\\! 1.7.4
Joomla Joomla\\! 1.7.3
Joomla Joomla\\! 2.5.0
445
VMScore
CVE-2012-0835
Unspecified vulnerability in Joomla! 1.7.x prior to 1.7.5 and 2.5.x prior to 2.5.1 allows malicious users to obtain sensitive information via unknown vectors related to "administrator."
Joomla Joomla\\! 1.7.2
Joomla Joomla\\! 1.7.0
Joomla Joomla\\! 1.7.4
Joomla Joomla\\! 1.7.1
Joomla Joomla\\! 1.7.3
Joomla Joomla\\! 2.5.0
668
VMScore
CVE-2012-2747
Unspecified vulnerability in Joomla! 2.5.x prior to 2.5.5 allows remote malicious users to gain privileges via unknown attack vectors related to "Inadequate checking."
Joomla Joomla\\! 2.5.0
Joomla Joomla\\! 2.5.1
Joomla Joomla\\! 2.5.2
Joomla Joomla\\! 2.5.3
Joomla Joomla\\! 2.5.4
445
VMScore
CVE-2012-0836
Unspecified vulnerability in Joomla! 1.7.x prior to 1.7.5 allows malicious users to read the error log via unknown vectors.
Joomla Joomla\\! 1.7.1
Joomla Joomla\\! 1.7.2
Joomla Joomla\\! 1.7.3
Joomla Joomla\\! 1.7.4
Joomla Joomla\\! 1.7.0
445
VMScore
CVE-2012-2748
Unspecified vulnerability in Joomla! 2.5.x prior to 2.5.5 allows remote malicious users to obtain sensitive information via vectors related to "Inadequate filtering" and a "SQL error."
Joomla Joomla\\! 2.5.1
Joomla Joomla\\! 2.5.2
Joomla Joomla\\! 2.5.0
Joomla Joomla\\! 2.5.3
Joomla Joomla\\! 2.5.4
668
VMScore
CVE-2015-8564
Directory traversal vulnerability in Joomla! 3.4.x prior to 3.4.6 allows remote malicious users to have unspecified impact via directory traversal sequences in the XML install file in an extension package archive.
Joomla Joomla\\! 3.4.1
Joomla Joomla\\! 3.4.4
Joomla Joomla\\! 3.4.0
Joomla Joomla\\! 3.4.3
Joomla Joomla\\! 3.4.5
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
7
8
9
10
NEXT »