Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
joomla joomla! 3.0.3 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2018-17375
SQL Injection exists in the Music Collection 3.0.3 component for Joomla! via the id parameter.
Joomlathat Music Collection 3.0.3
1 EDB exploit
5
CVSSv2
CVE-2017-14596
In Joomla! prior to 3.8.0, inadequate escaping in the LDAP authentication plugin can result in a disclosure of a username and password.
Joomla Joomla! 1.6.4
Joomla Joomla! 2.5.19
Joomla Joomla! 2.5.7
Joomla Joomla! 3.7.3
Joomla Joomla! 2.5.17
Joomla Joomla! 1.5.24
Joomla Joomla! 3.1.4
Joomla Joomla! 3.1.3
Joomla Joomla! 1.7.1
Joomla Joomla! 3.3.3
Joomla Joomla! 3.7.0
Joomla Joomla! 2.5.25
Joomla Joomla! 1.5.26
Joomla Joomla! 1.5.11
Joomla Joomla! 3.2.1
Joomla Joomla! 1.5.25
Joomla Joomla! 1.6.3
Joomla Joomla! 3.3.5
Joomla Joomla! 1.5.13
Joomla Joomla! 2.5.22
Joomla Joomla! 3.4.4
Joomla Joomla! 1.5.3
5.8
CVSSv2
CVE-2015-5608
Open redirect vulnerability in Joomla! CMS 3.0.0 up to and including 3.4.1.
Joomla Joomla! 3.4.0
Joomla Joomla! 3.1.4
Joomla Joomla! 3.1.3
Joomla Joomla! 3.3.3
Joomla Joomla! 3.2.1
Joomla Joomla! 3.3.5
Joomla Joomla! 3.3.6
Joomla Joomla! 3.3.4
Joomla Joomla! 3.2.7
Joomla Joomla! 3.1.5
Joomla Joomla! 3.1.1
Joomla Joomla! 3.3.1
Joomla Joomla! 3.2.2
Joomla Joomla! 3.0.2
Joomla Joomla! 3.4.1
Joomla Joomla! 3.0.4
Joomla Joomla! 3.3.0
Joomla Joomla! 3.1.6
Joomla Joomla! 3.2.4
Joomla Joomla! 3.0.3
Joomla Joomla! 3.0.1
Joomla Joomla! 3.2.3
6.5
CVSSv2
CVE-2017-11364
The CMS installer in Joomla! prior to 3.7.4 does not verify a user's ownership of a webspace, which allows remote authenticated users to gain control of the target application by leveraging Certificate Transparency logs.
Joomla Joomla! 1.0.5
Joomla Joomla! 3.4.0
Joomla Joomla! 3.5.0
Joomla Joomla! 1.6
Joomla Joomla! 1.6.4
Joomla Joomla! 2.5.19
Joomla Joomla! 3.6.0
Joomla Joomla! 2.5.7
Joomla Joomla! 3.7.3
Joomla Joomla! 2.5.17
Joomla Joomla! 1.5.24
Joomla Joomla! 3.1.4
Joomla Joomla! 3.1.3
Joomla Joomla! 1.7.1
Joomla Joomla! 3.3.3
Joomla Joomla! 3.7.0
Joomla Joomla! 2.5.25
Joomla Joomla! 1.0.9
Joomla Joomla! 1.5.26
Joomla Joomla! 1.5.11
Joomla Joomla! 3.2.1
Joomla Joomla! 1.5.25
4.3
CVSSv2
CVE-2017-11612
In Joomla! prior to 3.7.4, inadequate filtering of potentially malicious HTML tags leads to XSS vulnerabilities in various components.
Joomla Joomla! 3.4.0
Joomla Joomla! 3.5.0
Joomla Joomla! 1.6
Joomla Joomla! 1.6.4
Joomla Joomla! 2.5.19
Joomla Joomla! 3.6.0
Joomla Joomla! 2.5.7
Joomla Joomla! 3.7.3
Joomla Joomla! 2.5.17
Joomla Joomla! 1.5.24
Joomla Joomla! 3.1.4
Joomla Joomla! 3.1.3
Joomla Joomla! 1.7.1
Joomla Joomla! 3.3.3
Joomla Joomla! 3.7.0
Joomla Joomla! 2.5.25
Joomla Joomla! 1.5.26
Joomla Joomla! 1.5.11
Joomla Joomla! 3.2.1
Joomla Joomla! 1.5.25
Joomla Joomla! 1.6.3
Joomla Joomla! 3.3.5
4.3
CVSSv2
CVE-2017-9934
Missing CSRF token checks and improper input validation in Joomla! CMS 1.7.3 up to and including 3.7.2 lead to an XSS vulnerability.
Joomla Joomla! 3.4.0
Joomla Joomla! 3.5.0
Joomla Joomla! 2.5.19
Joomla Joomla! 3.6.0
Joomla Joomla! 2.5.7
Joomla Joomla! 2.5.17
Joomla Joomla! 3.1.4
Joomla Joomla! 3.1.3
Joomla Joomla! 3.3.3
Joomla Joomla! 3.7.0
Joomla Joomla! 2.5.25
Joomla Joomla! 3.2.1
Joomla Joomla! 3.3.5
Joomla Joomla! 2.5.22
Joomla Joomla! 3.4.4
Joomla Joomla! 3.4.1
Joomla Joomla! 3.3.4
Joomla Joomla! 2.5.8
Joomla Joomla! 3.6.1
Joomla Joomla! 3.1.5
Joomla Joomla! 3.1.1
Joomla Joomla! 3.7.2
1 Github repository
5
CVSSv2
CVE-2017-9933
Improper cache invalidation in Joomla! CMS 1.7.3 up to and including 3.7.2 leads to disclosure of form contents.
Joomla Joomla! 3.7.0
Joomla Joomla! 3.4.0
Joomla Joomla! 3.5.0
Joomla Joomla! 2.5.19
Joomla Joomla! 3.6.0
Joomla Joomla! 2.5.7
Joomla Joomla! 2.5.17
Joomla Joomla! 3.1.4
Joomla Joomla! 3.1.3
Joomla Joomla! 3.3.3
Joomla Joomla! 2.5.25
Joomla Joomla! 3.2.1
Joomla Joomla! 3.3.5
Joomla Joomla! 2.5.22
Joomla Joomla! 3.4.4
Joomla Joomla! 3.7.1
Joomla Joomla! 3.4.1
Joomla Joomla! 3.3.4
Joomla Joomla! 2.5.8
Joomla Joomla! 3.6.1
Joomla Joomla! 3.1.5
Joomla Joomla! 3.1.1
7.5
CVSSv2
CVE-2015-8769
SQL injection vulnerability in Joomla! 3.x prior to 3.4.7 allows malicious users to execute arbitrary SQL commands via unspecified vectors.
Joomla Joomla! 3.1.4
Joomla Joomla! 3.1.3
Joomla Joomla! 3.3.3
Joomla Joomla! 3.2.1
Joomla Joomla! 3.4.4
Joomla Joomla! 3.4.2
Joomla Joomla! 3.3.4
Joomla Joomla! 3.1.5
Joomla Joomla! 3.1.1
Joomla Joomla! 3.3.1
Joomla Joomla! 3.2.2
Joomla Joomla! 3.0.2
Joomla Joomla! 3.4.1
Joomla Joomla! 3.0.4
Joomla Joomla! 3.4.5
Joomla Joomla! 3.4.6
Joomla Joomla! 3.4.0
Joomla Joomla! 3.3.0
Joomla Joomla! 3.1.6
Joomla Joomla! 3.2.4
Joomla Joomla! 3.0.3
Joomla Joomla! 3.0.1
7.5
CVSSv2
CVE-2015-8562
Joomla! 1.5.x, 2.x, and 3.x prior to 3.4.6 allow remote malicious users to conduct PHP object injection attacks and execute arbitrary PHP code via the HTTP User-Agent header, as exploited in the wild in December 2015.
Joomla Joomla! 1.6.4
Joomla Joomla! 2.5.19
Joomla Joomla! 2.5.7
Joomla Joomla! 2.5.17
Joomla Joomla! 1.5.24
Joomla Joomla! 3.1.4
Joomla Joomla! 3.1.3
Joomla Joomla! 1.7.1
Joomla Joomla! 3.3.3
Joomla Joomla! 2.5.25
Joomla Joomla! 1.5.26
Joomla Joomla! 1.5.11
Joomla Joomla! 3.2.1
Joomla Joomla! 1.5.25
Joomla Joomla! 1.6.3
Joomla Joomla! 1.5.13
Joomla Joomla! 2.5.22
Joomla Joomla! 3.4.4
Joomla Joomla! 1.5.3
Joomla Joomla! 3.4.2
Joomla Joomla! 3.3.4
Joomla Joomla! 2.5.8
2 EDB exploits
20 Github repositories
7.5
CVSSv2
CVE-2014-7228
Akeeba Restore (restore.php), as used in Joomla! 2.5.4 up to and including 2.5.25, 3.x up to and including 3.2.5, and 3.3.0 up to and including 3.3.4; Akeeba Backup for Joomla! Professional 3.0.0 up to and including 4.0.2; Backup Professional for WordPress 1.0.b1 up to and includ...
Joomla Joomla! 2.5.19
Joomla Joomla! 2.5.7
Joomla Joomla! 2.5.17
Joomla Joomla! 3.1.4
Joomla Joomla! 3.1.3
Joomla Joomla! 3.3.3
Joomla Joomla! 2.5.25
Joomla Joomla! 3.2.1
Joomla Joomla! 2.5.22
Joomla Joomla! 3.3.4
Joomla Joomla! 2.5.8
Joomla Joomla! 3.1.5
Joomla Joomla! 3.1.1
Joomla Joomla! 3.3.1
Joomla Joomla! 3.2.2
Joomla Joomla! 3.0.2
Joomla Joomla! 2.5.15
Joomla Joomla! 2.5.13
Joomla Joomla! 2.5.11
Joomla Joomla! 2.5.23
Joomla Joomla! 3.0.4
Joomla Joomla! 2.5.21
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-38627
CVE-2022-45803
CVE-2024-38319
camera
template injection
CVE-2024-27801
CVE-2024-0762
CVE-2024-5791
unauthorized
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »