CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Joomla : Security Vulnerabilities (CVSS score between 6 and 8.99)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2021-26040 863 2021-08-24 2021-08-31
6.4
None Remote Low Not required None Partial Partial
An issue was discovered in Joomla! 4.0.0. The media manager does not correctly check the user's permissions before executing a file deletion command.
2 CVE-2021-23128 2021-03-04 2021-03-05
6.4
None Remote Low Not required Partial Partial None
An issue was discovered in Joomla! 3.2.0 through 3.9.24. The core shipped but unused randval implementation within FOF (FOFEncryptRandval) used an potential insecure implemetation. That has now been replaced with a call to 'random_bytes()' and its backport that is shipped within random_compat.
3 CVE-2021-23127 2021-03-04 2021-03-05
6.4
None Remote Low Not required Partial Partial None
An issue was discovered in Joomla! 3.2.0 through 3.9.24. Usage of an insufficient length for the 2FA secret accoring to RFC 4226 of 10 bytes vs 20 bytes.
4 CVE-2020-35615 352 CSRF 2020-12-28 2020-12-30
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in Joomla! 2.5.0 through 3.9.22. A missing token check in the emailexport feature of com_privacy causes a CSRF vulnerability.
5 CVE-2020-35613 89 Sql 2020-12-28 2020-12-30
7.5
None Remote Low Not required Partial Partial Partial
An issue was discovered in Joomla! 3.0.0 through 3.9.22. Improper filter blacklist configuration leads to a SQL injection vulnerability in the backend user list.
6 CVE-2020-15700 352 CSRF 2020-07-15 2020-07-15
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in Joomla! through 3.9.19. A missing token check in the ajax_install endpoint of com_installer causes a CSRF vulnerability.
7 CVE-2020-15695 352 CSRF 2020-07-15 2020-07-15
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in Joomla! through 3.9.19. A missing token check in the remove request section of com_privacy causes a CSRF vulnerability.
8 CVE-2020-13760 352 CSRF 2020-06-02 2020-10-19
6.8
None Remote Medium Not required Partial Partial Partial
In Joomla! before 3.9.19, missing token checks in com_postinstall lead to CSRF.
9 CVE-2020-10243 89 Sql 2020-03-16 2020-03-18
7.5
None Remote Low Not required Partial Partial Partial
An issue was discovered in Joomla! before 3.9.16. The lack of type casting of a variable in a SQL statement leads to a SQL injection vulnerability in the Featured Articles frontend menutype.
10 CVE-2020-10241 352 CSRF 2020-03-16 2020-03-18
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in Joomla! before 3.9.16. Missing token checks in the image actions of com_templates lead to CSRF.
11 CVE-2020-10239 862 2020-03-16 2021-07-21
6.5
None Remote Low ??? Partial Partial Partial
An issue was discovered in Joomla! before 3.9.16. Incorrect Access Control in the SQL fieldtype of com_fields allows access for non-superadmin users.
12 CVE-2020-8420 352 CSRF 2020-01-28 2020-02-07
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in Joomla! before 3.9.15. A missing CSRF token check in the LESS compiler of com_templates causes a CSRF vulnerability.
13 CVE-2020-8419 352 CSRF 2020-01-28 2020-02-06
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in Joomla! before 3.9.15. Missing token checks in the batch actions of various components cause CSRF vulnerabilities.
14 CVE-2019-19846 89 Sql 2019-12-18 2019-12-18
7.5
None Remote Low Not required Partial Partial Partial
In Joomla! before 3.9.14, the lack of validation of configuration parameters used in SQL queries caused various SQL injection vectors.
15 CVE-2019-18650 352 CSRF 2019-11-06 2019-11-06
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in Joomla! before 3.9.13. A missing token check in com_template causes a CSRF vulnerability.
16 CVE-2019-14654 Exec Code 2019-08-05 2020-08-24
6.5
None Remote Low ??? Partial Partial Partial
In Joomla! 3.9.7 and 3.9.8, inadequate filtering allows users authorised to create custom fields to manipulate the filtering options and inject an unvalidated option. In other words, the filter attribute in subform fields allows remote code execution. This is fixed in 3.9.9.
17 CVE-2019-12765 1236 2019-06-11 2020-08-24
7.5
None Remote Low Not required Partial Partial Partial
An issue was discovered in Joomla! before 3.9.7. The CSV export of com_actionslogs is vulnerable to CSV injection.
18 CVE-2019-11831 22 Dir. Trav. Bypass 2019-05-09 2021-10-01
7.5
None Remote Low Not required Partial Partial Partial
The PharStreamWrapper (aka phar-stream-wrapper) package 2.x before 2.1.1 and 3.x before 3.1.1 for TYPO3 does not prevent directory traversal, which allows attackers to bypass a deserialization protection mechanism, as demonstrated by a phar:///path/bad.phar/../good.phar URL.
19 CVE-2019-10945 22 Dir. Trav. 2019-04-10 2019-04-17
7.5
None Remote Low Not required Partial Partial Partial
An issue was discovered in Joomla! before 3.9.5. The Media Manager component does not properly sanitize the folder parameter, allowing attackers to act outside the media manager root directory.
20 CVE-2019-7743 502 2019-02-12 2020-08-24
7.5
None Remote Low Not required Partial Partial Partial
An issue was discovered in Joomla! before 3.9.3. The phar:// stream wrapper can be used for objection injection attacks because there is no protection mechanism (such as the TYPO3 PHAR stream wrapper) to prevent use of the phar:// handler for non .phar-files.
21 CVE-2018-17858 352 CSRF 2018-10-09 2018-11-26
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in Joomla! before 3.8.13. com_installer actions do not have sufficient CSRF hardening in the backend.
22 CVE-2018-17856 Exec Code 2018-10-09 2020-08-24
6.5
None Remote Low ??? Partial Partial Partial
An issue was discovered in Joomla! before 3.8.13. com_joomlaupdate allows the execution of arbitrary code. The default ACL config enabled the ability of Administrator-level users to access com_joomlaupdate and trigger code execution.
23 CVE-2018-17855 269 2018-10-09 2020-08-24
6.5
None Remote Low ??? Partial Partial Partial
An issue was discovered in Joomla! before 3.8.13. If an attacker gets access to the mail account of an user who can approve admin verifications in the registration process, he can activate himself.
24 CVE-2018-15882 434 2018-08-29 2018-11-05
7.5
None Remote Low Not required Partial Partial Partial
An issue was discovered in Joomla! before 3.8.12. Inadequate checks in the InputFilter class could allow specifically prepared phar files to pass the upload filter.
25 CVE-2018-12712 20 File Inclusion 2018-06-26 2018-08-20
6.5
None Remote Low ??? Partial Partial Partial
An issue was discovered in Joomla! 2.5.0 through 3.8.8 before 3.8.9. The autoload code checks classnames to be valid, using the "class_exists" function in PHP. In PHP 5.3, this function validates invalid names as valid, which can result in a Local File Inclusion.
26 CVE-2018-11323 269 2018-05-22 2019-10-03
6.5
None Remote Low ??? Partial Partial Partial
An issue was discovered in Joomla! Core before 3.8.8. Inadequate checks allowed users to modify the access levels of user groups with higher permissions.
27 CVE-2018-11322 434 2018-05-22 2018-06-22
6.0
None Remote Medium ??? Partial Partial Partial
An issue was discovered in Joomla! Core before 3.8.8. Depending on the server configuration, PHAR files might be handled as executable PHP scripts by the webserver.
28 CVE-2018-8045 89 Sql 2018-03-15 2018-04-09
6.5
None Remote Low ??? Partial Partial Partial
In Joomla! 3.5.0 through 3.8.5, the lack of type casting of a variable in a SQL statement leads to a SQL injection vulnerability in the User Notes list view.
29 CVE-2018-6376 89 Sql 2018-01-30 2018-02-13
7.5
None Remote Low Not required Partial Partial Partial
In Joomla! before 3.8.4, the lack of type casting of a variable in a SQL statement leads to a SQL injection vulnerability in the Hathor postinstall message.
30 CVE-2017-16634 287 Bypass 2017-11-10 2017-11-28
7.5
None Remote Low Not required Partial Partial Partial
In Joomla! before 3.8.2, a bug allowed third parties to bypass a user's 2-factor authentication method.
31 CVE-2017-11364 295 2017-08-02 2017-08-04
6.5
None Remote Low ??? Partial Partial Partial
The CMS installer in Joomla! before 3.7.4 does not verify a user's ownership of a webspace, which allows remote authenticated users to gain control of the target application by leveraging Certificate Transparency logs.
32 CVE-2017-8917 89 Exec Code Sql 2017-05-17 2019-04-16
7.5
None Remote Low Not required Partial Partial Partial
SQL injection vulnerability in Joomla! 3.7.x before 3.7.1 allows attackers to execute arbitrary SQL commands via unspecified vectors.
33 CVE-2016-10045 77 Exec Code 2016-12-30 2021-09-30
7.5
None Remote Low Not required Partial Partial Partial
The isMail transport in PHPMailer before 5.2.20 might allow remote attackers to pass extra parameters to the mail command and consequently execute arbitrary code by leveraging improper interaction between the escapeshellarg function and internal escaping performed in the mail function in PHP. NOTE: this vulnerability exists because of an incorrect fix for CVE-2016-10033.
34 CVE-2016-10033 77 Exec Code 2016-12-30 2021-09-30
7.5
None Remote Low Not required Partial Partial Partial
The mailSend function in the isMail transport in PHPMailer before 5.2.18 might allow remote attackers to pass extra parameters to the mail command and consequently execute arbitrary code via a \" (backslash double quote) in a crafted Sender property.
35 CVE-2016-9836 284 2016-12-05 2016-12-07
7.5
None Remote Low Not required Partial Partial Partial
The file scanning mechanism of JFilterInput::isFileSafe() in Joomla! CMS before 3.6.5 does not consider alternative PHP file extensions when checking uploaded files for PHP content, which enables a user to upload and execute files with the `.php6`, `.php7`, `.phtml`, and `.phpt` extensions. Additionally, JHelperMedia::canUpload() did not blacklist these file extensions as uploadable file types.
36 CVE-2016-9081 255 2017-01-23 2017-01-26
7.5
None Remote Low Not required Partial Partial Partial
Joomla! 3.4.4 through 3.6.3 allows attackers to reset username, password, and user group assignments and possibly perform other user account modifications via unspecified vectors.
37 CVE-2016-8870 20 2016-11-04 2017-07-29
6.8
None Remote Medium Not required Partial Partial Partial
The register method in the UsersModelRegistration class in controllers/user.php in the Users component in Joomla! before 3.6.4, when registration has been disabled, allows remote attackers to create user accounts by leveraging failure to check the Allow User Registration configuration setting.
38 CVE-2016-8869 20 +Priv 2016-11-04 2016-11-07
7.5
None Remote Low Not required Partial Partial Partial
The register method in the UsersModelRegistration class in controllers/user.php in the Users component in Joomla! before 3.6.4 allows remote attackers to gain privileges by leveraging incorrect use of unfiltered data when registering on a site.
39 CVE-2015-8769 89 Exec Code Sql 2016-01-12 2016-12-07
7.5
None Remote Low Not required Partial Partial Partial
SQL injection vulnerability in Joomla! 3.x before 3.4.7 allows attackers to execute arbitrary SQL commands via unspecified vectors.
40 CVE-2015-8566 Exec Code 2015-12-16 2015-12-17
7.5
None Remote Low Not required Partial Partial Partial
The Session package 1.x before 1.3.1 for Joomla! Framework allows remote attackers to execute arbitrary code via unspecified session values.
41 CVE-2015-8565 22 Dir. Trav. 2015-12-16 2015-12-17
7.5
None Remote Low Not required Partial Partial Partial
Directory traversal vulnerability in Joomla! 3.2.0 through 3.3.x and 3.4.x before 3.4.6 allows remote attackers to have unspecified impact via unknown vectors.
42 CVE-2015-8564 22 Dir. Trav. 2015-12-16 2015-12-17
7.5
None Remote Low Not required Partial Partial Partial
Directory traversal vulnerability in Joomla! 3.4.x before 3.4.6 allows remote attackers to have unspecified impact via directory traversal sequences in the XML install file in an extension package archive.
43 CVE-2015-8563 352 CSRF 2015-12-16 2015-12-17
6.8
None Remote Medium Not required Partial Partial Partial
Cross-site request forgery (CSRF) vulnerability in the com_templates component in Joomla! 3.2.0 through 3.3.x and 3.4.x before 3.4.6 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
44 CVE-2015-8562 20 Exec Code 2015-12-16 2018-10-09
7.5
None Remote Low Not required Partial Partial Partial
Joomla! 1.5.x, 2.x, and 3.x before 3.4.6 allow remote attackers to conduct PHP object injection attacks and execute arbitrary PHP code via the HTTP User-Agent header, as exploited in the wild in December 2015.
45 CVE-2015-7858 89 Exec Code Sql 2015-10-29 2017-09-13
7.5
None Remote Low Not required Partial Partial Partial
SQL injection vulnerability in Joomla! 3.2 before 3.4.4 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, a different vulnerability than CVE-2015-7297.
46 CVE-2015-7857 89 Exec Code Sql 2015-10-29 2017-09-13
7.5
None Remote Low Not required Partial Partial Partial
SQL injection vulnerability in the getListQuery function in administrator/components/com_contenthistory/models/history.php in Joomla! 3.2 before 3.4.5 allows remote attackers to execute arbitrary SQL commands via the list[select] parameter to index.php.
47 CVE-2015-7297 89 Exec Code Sql 2015-10-29 2017-09-13
7.5
None Remote Low Not required Partial Partial Partial
SQL injection vulnerability in Joomla! 3.2 before 3.4.4 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, a different vulnerability than CVE-2015-7858.
48 CVE-2015-5397 352 CSRF 2015-07-14 2016-12-07
6.8
None Remote Medium Not required Partial Partial Partial
Cross-site request forgery (CSRF) vulnerability in Joomla! 3.2.0 through 3.3.x and 3.4.x before 3.4.2 allows remote attackers to hijack the authentication of unspecified victims for requests that upload code via unknown vectors.
49 CVE-2015-4654 89 Exec Code Sql 2015-06-18 2016-12-07
7.5
None Remote Low Not required Partial Partial Partial
SQL injection vulnerability in the EQ Event Calendar component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter to eqfullevent.
50 CVE-2014-7984 264 Bypass 2014-10-08 2014-10-10
7.5
None Remote Low Not required Partial Partial Partial
Joomla! CMS 2.5.x before 2.5.19 and 3.x before 3.2.3 allows remote attackers to authenticate and bypass intended restrictions via vectors involving GMail authentication.
Total number of vulnerabilities : 230   Page : 1 (This Page)2 3 4 5
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.