Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
joomla joomla! 3.0.4 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2018-7314
SQL Injection exists in the PrayerCenter 3.0.2 component for Joomla! via the sessionid parameter, a different vulnerability than CVE-2008-6429.
Mlwebtechnologies Prayercenter 3.0.2
1 EDB exploit
7.5
CVSSv2
CVE-2018-7177
SQL Injection exists in the Saxum Numerology 3.0.4 component for Joomla! via the publicid parameter.
Saxum2003 Numerology 3.0.4
1 EDB exploit
5
CVSSv2
CVE-2017-14596
In Joomla! prior to 3.8.0, inadequate escaping in the LDAP authentication plugin can result in a disclosure of a username and password.
Joomla Joomla! 1.6.4
Joomla Joomla! 2.5.19
Joomla Joomla! 2.5.7
Joomla Joomla! 3.7.3
Joomla Joomla! 2.5.17
Joomla Joomla! 1.5.24
Joomla Joomla! 3.1.4
Joomla Joomla! 3.1.3
Joomla Joomla! 1.7.1
Joomla Joomla! 3.3.3
Joomla Joomla! 3.7.0
Joomla Joomla! 2.5.25
Joomla Joomla! 1.5.26
Joomla Joomla! 1.5.11
Joomla Joomla! 3.2.1
Joomla Joomla! 1.5.25
Joomla Joomla! 1.6.3
Joomla Joomla! 3.3.5
Joomla Joomla! 1.5.13
Joomla Joomla! 2.5.22
Joomla Joomla! 3.4.4
Joomla Joomla! 1.5.3
5.8
CVSSv2
CVE-2015-5608
Open redirect vulnerability in Joomla! CMS 3.0.0 up to and including 3.4.1.
Joomla Joomla! 3.4.0
Joomla Joomla! 3.1.4
Joomla Joomla! 3.1.3
Joomla Joomla! 3.3.3
Joomla Joomla! 3.2.1
Joomla Joomla! 3.3.5
Joomla Joomla! 3.3.6
Joomla Joomla! 3.3.4
Joomla Joomla! 3.2.7
Joomla Joomla! 3.1.5
Joomla Joomla! 3.1.1
Joomla Joomla! 3.3.1
Joomla Joomla! 3.2.2
Joomla Joomla! 3.0.2
Joomla Joomla! 3.4.1
Joomla Joomla! 3.0.4
Joomla Joomla! 3.3.0
Joomla Joomla! 3.1.6
Joomla Joomla! 3.2.4
Joomla Joomla! 3.0.3
Joomla Joomla! 3.0.1
Joomla Joomla! 3.2.3
6.5
CVSSv2
CVE-2017-11364
The CMS installer in Joomla! prior to 3.7.4 does not verify a user's ownership of a webspace, which allows remote authenticated users to gain control of the target application by leveraging Certificate Transparency logs.
Joomla Joomla! 1.0.5
Joomla Joomla! 3.4.0
Joomla Joomla! 3.5.0
Joomla Joomla! 1.6
Joomla Joomla! 1.6.4
Joomla Joomla! 2.5.19
Joomla Joomla! 3.6.0
Joomla Joomla! 2.5.7
Joomla Joomla! 3.7.3
Joomla Joomla! 2.5.17
Joomla Joomla! 1.5.24
Joomla Joomla! 3.1.4
Joomla Joomla! 3.1.3
Joomla Joomla! 1.7.1
Joomla Joomla! 3.3.3
Joomla Joomla! 3.7.0
Joomla Joomla! 2.5.25
Joomla Joomla! 1.0.9
Joomla Joomla! 1.5.26
Joomla Joomla! 1.5.11
Joomla Joomla! 3.2.1
Joomla Joomla! 1.5.25
4.3
CVSSv2
CVE-2017-11612
In Joomla! prior to 3.7.4, inadequate filtering of potentially malicious HTML tags leads to XSS vulnerabilities in various components.
Joomla Joomla! 3.4.0
Joomla Joomla! 3.5.0
Joomla Joomla! 1.6
Joomla Joomla! 1.6.4
Joomla Joomla! 2.5.19
Joomla Joomla! 3.6.0
Joomla Joomla! 2.5.7
Joomla Joomla! 3.7.3
Joomla Joomla! 2.5.17
Joomla Joomla! 1.5.24
Joomla Joomla! 3.1.4
Joomla Joomla! 3.1.3
Joomla Joomla! 1.7.1
Joomla Joomla! 3.3.3
Joomla Joomla! 3.7.0
Joomla Joomla! 2.5.25
Joomla Joomla! 1.5.26
Joomla Joomla! 1.5.11
Joomla Joomla! 3.2.1
Joomla Joomla! 1.5.25
Joomla Joomla! 1.6.3
Joomla Joomla! 3.3.5
4.3
CVSSv2
CVE-2017-9934
Missing CSRF token checks and improper input validation in Joomla! CMS 1.7.3 up to and including 3.7.2 lead to an XSS vulnerability.
Joomla Joomla! 3.4.0
Joomla Joomla! 3.5.0
Joomla Joomla! 2.5.19
Joomla Joomla! 3.6.0
Joomla Joomla! 2.5.7
Joomla Joomla! 2.5.17
Joomla Joomla! 3.1.4
Joomla Joomla! 3.1.3
Joomla Joomla! 3.3.3
Joomla Joomla! 3.7.0
Joomla Joomla! 2.5.25
Joomla Joomla! 3.2.1
Joomla Joomla! 3.3.5
Joomla Joomla! 2.5.22
Joomla Joomla! 3.4.4
Joomla Joomla! 3.4.1
Joomla Joomla! 3.3.4
Joomla Joomla! 2.5.8
Joomla Joomla! 3.6.1
Joomla Joomla! 3.1.5
Joomla Joomla! 3.1.1
Joomla Joomla! 3.7.2
1 Github repository
5
CVSSv2
CVE-2017-9933
Improper cache invalidation in Joomla! CMS 1.7.3 up to and including 3.7.2 leads to disclosure of form contents.
Joomla Joomla! 3.7.0
Joomla Joomla! 3.4.0
Joomla Joomla! 3.5.0
Joomla Joomla! 2.5.19
Joomla Joomla! 3.6.0
Joomla Joomla! 2.5.7
Joomla Joomla! 2.5.17
Joomla Joomla! 3.1.4
Joomla Joomla! 3.1.3
Joomla Joomla! 3.3.3
Joomla Joomla! 2.5.25
Joomla Joomla! 3.2.1
Joomla Joomla! 3.3.5
Joomla Joomla! 2.5.22
Joomla Joomla! 3.4.4
Joomla Joomla! 3.7.1
Joomla Joomla! 3.4.1
Joomla Joomla! 3.3.4
Joomla Joomla! 2.5.8
Joomla Joomla! 3.6.1
Joomla Joomla! 3.1.5
Joomla Joomla! 3.1.1
7.5
CVSSv2
CVE-2015-8769
SQL injection vulnerability in Joomla! 3.x prior to 3.4.7 allows malicious users to execute arbitrary SQL commands via unspecified vectors.
Joomla Joomla! 3.1.4
Joomla Joomla! 3.1.3
Joomla Joomla! 3.3.3
Joomla Joomla! 3.2.1
Joomla Joomla! 3.4.4
Joomla Joomla! 3.4.2
Joomla Joomla! 3.3.4
Joomla Joomla! 3.1.5
Joomla Joomla! 3.1.1
Joomla Joomla! 3.3.1
Joomla Joomla! 3.2.2
Joomla Joomla! 3.0.2
Joomla Joomla! 3.4.1
Joomla Joomla! 3.0.4
Joomla Joomla! 3.4.5
Joomla Joomla! 3.4.6
Joomla Joomla! 3.4.0
Joomla Joomla! 3.3.0
Joomla Joomla! 3.1.6
Joomla Joomla! 3.2.4
Joomla Joomla! 3.0.3
Joomla Joomla! 3.0.1
7.5
CVSSv2
CVE-2014-7228
Akeeba Restore (restore.php), as used in Joomla! 2.5.4 up to and including 2.5.25, 3.x up to and including 3.2.5, and 3.3.0 up to and including 3.3.4; Akeeba Backup for Joomla! Professional 3.0.0 up to and including 4.0.2; Backup Professional for WordPress 1.0.b1 up to and includ...
Joomla Joomla! 2.5.19
Joomla Joomla! 2.5.7
Joomla Joomla! 2.5.17
Joomla Joomla! 3.1.4
Joomla Joomla! 3.1.3
Joomla Joomla! 3.3.3
Joomla Joomla! 2.5.25
Joomla Joomla! 3.2.1
Joomla Joomla! 2.5.22
Joomla Joomla! 3.3.4
Joomla Joomla! 2.5.8
Joomla Joomla! 3.1.5
Joomla Joomla! 3.1.1
Joomla Joomla! 3.3.1
Joomla Joomla! 3.2.2
Joomla Joomla! 3.0.2
Joomla Joomla! 2.5.15
Joomla Joomla! 2.5.13
Joomla Joomla! 2.5.11
Joomla Joomla! 2.5.23
Joomla Joomla! 3.0.4
Joomla Joomla! 2.5.21
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-28995
CVE-2024-36680
CVE-2024-35537
unauthorized
CVE-2024-21518
CVE-2024-37673
cross-site scripting
SSRF
CVE-2024-6241
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »