Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
joomla! vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2006-6834
Multiple unspecified vulnerabilities in Joomla! prior to 1.0.12 have unknown impact and attack vectors related to (1) "unneeded legacy functions" and (2) "Several low level security fixes."
Joomla Joomla 1.0
Joomla Joomla 1.0.7
Joomla Joomla 1.0.8
Joomla Joomla 1.0.11
Joomla Joomla 1.0.2
Joomla Joomla 1.0.3
Joomla Joomla 1.0.4
Joomla Joomla 1.0.5
Joomla Joomla 1.0.1
Joomla Joomla 1.0.10
Joomla Joomla 1.0.9
5
CVSSv2
CVE-2012-0819
Unspecified vulnerability in Joomla! 1.6.x and 1.7.x prior to 1.7.4 allows remote malicious users to obtain sensitive information via unknown vectors, a different vulnerability than CVE-2012-0821.
Joomla Joomla\\! 1.6
Joomla Joomla\\! 1.6.1
Joomla Joomla\\! 1.6.6
Joomla Joomla\\! 1.7.1
Joomla Joomla\\! 1.6.3
Joomla Joomla\\! 1.6.0
Joomla Joomla\\! 1.7.2
Joomla Joomla\\! 1.7.3
Joomla Joomla\\! 1.6.4
Joomla Joomla\\! 1.6.5
Joomla Joomla\\! 1.7.0
5
CVSSv2
CVE-2012-0821
Unspecified vulnerability in Joomla! 1.6.x and 1.7.x prior to 1.7.4 allows remote malicious users to obtain sensitive information via unknown vectors, a different vulnerability than CVE-2012-0819.
Joomla Joomla\\! 1.6
Joomla Joomla\\! 1.6.6
Joomla Joomla\\! 1.6.1
Joomla Joomla\\! 1.6.5
Joomla Joomla\\! 1.6.0
Joomla Joomla\\! 1.6.4
Joomla Joomla\\! 1.6.3
Joomla Joomla\\! 1.7.0
Joomla Joomla\\! 1.7.2
Joomla Joomla\\! 1.7.3
Joomla Joomla\\! 1.7.1
7.5
CVSSv2
CVE-2014-7981
SQL injection vulnerability in Joomla! CMS 3.1.x and 3.2.x prior to 3.2.3 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Joomla Joomla\\! 3.1.2
Joomla Joomla\\! 3.1.1
Joomla Joomla\\! 3.1.6
Joomla Joomla\\! 3.2.1
Joomla Joomla\\! 3.1.3
Joomla Joomla\\! 3.1.4
Joomla Joomla\\! 3.1.5
Joomla Joomla\\! 3.1.0
Joomla Joomla\\! 3.2.2
Joomla Joomla\\! 3.2.0
7.5
CVSSv2
CVE-2006-7010
The mosgetparam implementation in Joomla! prior to 1.0.10, does not set a variable's data type to integer when the variable's default value is numeric, which has unspecified impact and attack vectors, which may permit SQL injection attacks.
Joomla Joomla 1.0.2
Joomla Joomla 1.0.3
Joomla Joomla 1.0.4
Joomla Joomla 1.0.5
Joomla Joomla 1.0.0
Joomla Joomla 1.0.7
Joomla Joomla 1.0.9
Joomla Joomla 1.0.1
Joomla Joomla 1.0.6
Joomla Joomla 1.0.8
7.5
CVSSv2
CVE-2006-7008
Unspecified vulnerability in Joomla! prior to 1.0.10 has unknown impact and attack vectors, related to "securing mosmsg from misuse." NOTE: it is possible that this issue overlaps CVE-2006-1029.
Joomla Joomla 1.0.0
Joomla Joomla 1.0.1
Joomla Joomla 1.0.2
Joomla Joomla 1.0.7
Joomla Joomla 1.0.8
Joomla Joomla 1.0.9
Joomla Joomla 1.0.4
Joomla Joomla 1.0.6
Joomla Joomla 1.0.3
Joomla Joomla 1.0.5
7.5
CVSSv2
CVE-2006-7009
Joomla! prior to 1.0.10 allows remote malicious users to spoof the frontend submission forms, which has unknown impact and attack vectors.
Joomla Joomla 1.0.4
Joomla Joomla 1.0.5
Joomla Joomla 1.0.6
Joomla Joomla 1.0.7
Joomla Joomla 1.0.0
Joomla Joomla 1.0.2
Joomla Joomla 1.0.9
Joomla Joomla 1.0.1
Joomla Joomla 1.0.3
Joomla Joomla 1.0.8
7.5
CVSSv2
CVE-2006-3481
Multiple SQL injection vulnerabilities in Joomla! prior to 1.0.10 allow remote malicious users to execute arbitrary SQL commands via unspecified parameters involving the (1) "Remember Me" function, (2) "Related Items" module, and the (3) "Weblinks submiss...
Joomla Joomla 1.0
Joomla Joomla 1.0.1
Joomla Joomla 1.0.4
Joomla Joomla 1.0.5
Joomla Joomla 1.0.2
Joomla Joomla 1.0.3
Joomla Joomla 1.0.7
Joomla Joomla 1.0.8
Joomla Joomla 1.0.9
4.3
CVSSv2
CVE-2014-6631
Cross-site scripting (XSS) vulnerability in com_media in Joomla! 3.2.x prior to 3.2.5 and 3.3.x prior to 3.3.4 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Joomla Joomla\\! 3.2.4
Joomla Joomla\\! 3.3.3
Joomla Joomla\\! 3.3.2
Joomla Joomla\\! 3.3.1
Joomla Joomla\\! 3.3.0
Joomla Joomla\\! 3.2.2
Joomla Joomla\\! 3.2.0
Joomla Joomla\\! 3.2.3
Joomla Joomla\\! 3.2.1
5.8
CVSSv2
CVE-2006-3480
Multiple cross-site scripting (XSS) vulnerabilities in Joomla! prior to 1.0.10 allow remote malicious users to inject arbitrary web script or HTML via unspecified parameters involving the (1) getUserStateFromRequest function, and the (2) SEF and (3) com_messages modules.
Joomla Joomla 1.0.2
Joomla Joomla 1.0.3
Joomla Joomla 1.0.7
Joomla Joomla 1.0.8
Joomla Joomla 1.0.4
Joomla Joomla 1.0.5
Joomla Joomla 1.0
Joomla Joomla 1.0.1
Joomla Joomla 1.0.9
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-3675
CVE-2024-3400
CVE-2024-23557
mass assignment
CVE-2023-1389
local file inclusion
CVE-2024-32596
file upload
CVE-2024-32593
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »