Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
joomla joomla! 3.4.1 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2015-6939
Cross-site scripting (XSS) vulnerability in the login module in Joomla! 3.4.x prior to 3.4.4 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Joomla Joomla! 3.4.0
Joomla Joomla! 3.4.2
Joomla Joomla! 3.4.1
Joomla Joomla! 3.4.3
NA
CVE-2015-8564
Directory traversal vulnerability in Joomla! 3.4.x prior to 3.4.6 allows remote malicious users to have unspecified impact via directory traversal sequences in the XML install file in an extension package archive.
Joomla Joomla! 3.4.4
Joomla Joomla! 3.4.1
Joomla Joomla! 3.4.5
Joomla Joomla! 3.4.0
Joomla Joomla! 3.4.3
NA
CVE-2015-7858
SQL injection vulnerability in Joomla! 3.2 prior to 3.4.4 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors, a different vulnerability than CVE-2015-7297.
Joomla Joomla! 3.3.3
Joomla Joomla! 3.2.1
Joomla Joomla! 3.4.2
Joomla Joomla! 3.3.4
Joomla Joomla! 3.3.1
Joomla Joomla! 3.2.2
Joomla Joomla! 3.4.1
Joomla Joomla! 3.4.0
Joomla Joomla! 3.3.0
Joomla Joomla! 3.2.4
Joomla Joomla! 3.4.3
Joomla Joomla! 3.2.3
Joomla Joomla! 3.2.0
Joomla Joomla! 3.3.2
1 EDB exploit
14 Github repositories
1 Article
NA
CVE-2015-7859
The com_contenthistory component in Joomla! 3.2 prior to 3.4.5 does not properly check ACLs, which allows remote malicious users to obtain sensitive information via unspecified vectors.
Joomla Joomla! 3.3.3
Joomla Joomla! 3.2.1
Joomla Joomla! 3.4.4
Joomla Joomla! 3.4.2
Joomla Joomla! 3.3.4
Joomla Joomla! 3.3.1
Joomla Joomla! 3.2.2
Joomla Joomla! 3.4.1
Joomla Joomla! 3.4.0
Joomla Joomla! 3.3.0
Joomla Joomla! 3.2.4
Joomla Joomla! 3.4.3
Joomla Joomla! 3.2.3
Joomla Joomla! 3.2.0
Joomla Joomla! 3.3.2
1 Article
NA
CVE-2015-7297
SQL injection vulnerability in Joomla! 3.2 prior to 3.4.4 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors, a different vulnerability than CVE-2015-7858.
Joomla Joomla! 3.3.3
Joomla Joomla! 3.2.1
Joomla Joomla! 3.4.4
Joomla Joomla! 3.4.2
Joomla Joomla! 3.3.4
Joomla Joomla! 3.3.1
Joomla Joomla! 3.2.2
Joomla Joomla! 3.4.1
Joomla Joomla! 3.4.0
Joomla Joomla! 3.3.0
Joomla Joomla! 3.2.4
Joomla Joomla! 3.4.3
Joomla Joomla! 3.2.3
Joomla Joomla! 3.2.0
Joomla Joomla! 3.3.2
1 EDB exploit
15 Github repositories
1 Article
NA
CVE-2015-7857
SQL injection vulnerability in the getListQuery function in administrator/components/com_contenthistory/models/history.php in Joomla! 3.2 prior to 3.4.5 allows remote malicious users to execute arbitrary SQL commands via the list[select] parameter to index.php.
Joomla Joomla! 3.3.3
Joomla Joomla! 3.2.1
Joomla Joomla! 3.4.4
Joomla Joomla! 3.4.2
Joomla Joomla! 3.3.4
Joomla Joomla! 3.3.1
Joomla Joomla! 3.2.2
Joomla Joomla! 3.4.1
Joomla Joomla! 3.4.0
Joomla Joomla! 3.3.0
Joomla Joomla! 3.2.4
Joomla Joomla! 3.4.3
Joomla Joomla! 3.2.3
Joomla Joomla! 3.2.0
Joomla Joomla! 3.3.2
1 EDB exploit
14 Github repositories
1 Article
NA
CVE-2015-7899
The com_content component in Joomla! 3.x prior to 3.4.5 does not properly check ACLs, which allows remote malicious users to obtain sensitive information via unspecified vectors.
Joomla Joomla! 3.3.3
Joomla Joomla! 3.2.1
Joomla Joomla! 3.4.4
Joomla Joomla! 3.4.2
Joomla Joomla! 3.3.4
Joomla Joomla! 3.3.1
Joomla Joomla! 3.2.2
Joomla Joomla! 3.4.1
Joomla Joomla! 3.4.0
Joomla Joomla! 3.3.0
Joomla Joomla! 3.2.4
Joomla Joomla! 3.4.3
Joomla Joomla! 3.2.3
Joomla Joomla! 3.2.0
Joomla Joomla! 3.3.2
1 Article
NA
CVE-2015-5397
Cross-site request forgery (CSRF) vulnerability in Joomla! 3.2.0 up to and including 3.3.x and 3.4.x prior to 3.4.2 allows remote malicious users to hijack the authentication of unspecified victims for requests that upload code via unknown vectors.
Joomla Joomla! 3.4.0
Joomla Joomla! 3.3.3
Joomla Joomla! 3.2.1
Joomla Joomla! 3.3.5
Joomla Joomla! 3.4.1
Joomla Joomla! 3.3.4
Joomla Joomla! 3.3.1
Joomla Joomla! 3.2.2
Joomla Joomla! 3.3.0
Joomla Joomla! 3.2.4
Joomla Joomla! 3.2.3
Joomla Joomla! 3.2.0
Joomla Joomla! 3.3.2
Joomla Joomla! 3.2.5
Joomla Joomla! 3.4.2
NA
CVE-2015-8565
Directory traversal vulnerability in Joomla! 3.2.0 up to and including 3.3.x and 3.4.x prior to 3.4.6 allows remote malicious users to have unspecified impact via unknown vectors.
Joomla Joomla! 3.3.3
Joomla Joomla! 3.2.1
Joomla Joomla! 3.4.4
Joomla Joomla! 3.4.2
Joomla Joomla! 3.3.4
Joomla Joomla! 3.3.1
Joomla Joomla! 3.2.2
Joomla Joomla! 3.4.1
Joomla Joomla! 3.4.5
Joomla Joomla! 3.4.0
Joomla Joomla! 3.3.0
Joomla Joomla! 3.2.4
Joomla Joomla! 3.4.3
Joomla Joomla! 3.2.3
Joomla Joomla! 3.2.0
Joomla Joomla! 3.3.2
NA
CVE-2015-8563
Cross-site request forgery (CSRF) vulnerability in the com_templates component in Joomla! 3.2.0 up to and including 3.3.x and 3.4.x prior to 3.4.6 allows remote malicious users to hijack the authentication of unspecified victims via unknown vectors.
Joomla Joomla! 3.3.3
Joomla Joomla! 3.2.1
Joomla Joomla! 3.3.5
Joomla Joomla! 3.4.4
Joomla Joomla! 3.3.4
Joomla Joomla! 3.3.1
Joomla Joomla! 3.2.2
Joomla Joomla! 3.4.1
Joomla Joomla! 3.4.5
Joomla Joomla! 3.4.0
Joomla Joomla! 3.3.0
Joomla Joomla! 3.2.4
Joomla Joomla! 3.4.3
Joomla Joomla! 3.2.3
Joomla Joomla! 3.2.0
Joomla Joomla! 3.3.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-28995
CVE-2024-36680
CVE-2024-35537
unauthorized
CVE-2024-21518
CVE-2024-37673
cross-site scripting
SSRF
CVE-2024-6241
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »