Vendor CVEs
Joomla
All CVEs
1,051 total · sorted by risk| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2018-6379 | Med | 0.40 | 6.1 | 0.02 | Jan 30, 2018 | In Joomla! before 3.8.4, inadequate input filtering in the Uri class (formerly JUri) leads to an XSS vulnerability. | ||
| CVE-2015-5608 | Med | 0.40 | 6.1 | 0.01 | Sep 20, 2017 | Open redirect vulnerability in Joomla! CMS 3.0.0 through 3.4.1. | ||
| CVE-2013-7433 | Med | 0.40 | 6.1 | 0.01 | Aug 29, 2017 | Cross-site scripting (XSS) vulnerability in the Googlemaps plugin before 3.1 for Joomla!. | ||
| CVE-2013-7430 | Med | 0.40 | 6.1 | 0.01 | Aug 28, 2017 | Cross-site scripting (XSS) vulnerability in the Googlemaps plugin before 3.1 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the xmlns parameter. | ||
| CVE-2017-11612 | Med | 0.40 | 6.1 | 0.01 | Jul 26, 2017 | In Joomla! before 3.7.4, inadequate filtering of potentially malicious HTML tags leads to XSS vulnerabilities in various components. | ||
| CVE-2017-9934 | Med | 0.40 | 6.1 | 0.02 | Jul 17, 2017 | Missing CSRF token checks and improper input validation in Joomla! CMS 1.7.3 through 3.7.2 lead to an XSS vulnerability. | ||
| CVE-2017-7987 | Med | 0.40 | 6.1 | 0.01 | Apr 25, 2017 | In Joomla! 3.2.0 through 3.6.5 (fixed in 3.7.0), inadequate escaping of file and folder names leads to XSS vulnerabilities in the template manager component. | ||
| CVE-2017-7986 | Med | 0.40 | 6.1 | 0.01 | Apr 25, 2017 | In Joomla! 1.5.0 through 3.6.5 (fixed in 3.7.0), inadequate filtering of specific HTML attributes leads to XSS vulnerabilities in various components. | ||
| CVE-2017-7985 | Med | 0.40 | 6.1 | 0.01 | Apr 25, 2017 | In Joomla! 1.5.0 through 3.6.5 (fixed in 3.7.0), inadequate filtering of multibyte characters leads to XSS vulnerabilities in various components. | ||
| CVE-2017-7984 | Med | 0.40 | 6.1 | 0.01 | Apr 25, 2017 | In Joomla! 3.2.0 through 3.6.5 (fixed in 3.7.0), inadequate filtering leads to XSS in the template manager component. | ||
| CVE-2016-1000114 | Med | 0.40 | 6.1 | 0.01 | Oct 6, 2016 | XSS in huge IT gallery v1.1.5 for Joomla | ||
| CVE-2018-11324 | Med | 0.38 | 5.9 | 0.01 | May 22, 2018 | An issue was discovered in Joomla! Core before 3.8.8. A long running background process, such as remote checks for core or extension updates, could create a race condition where a session that was expected to be destroyed would be recreated. | ||
| CVE-2014-9686 | Med | 0.38 | 5.9 | 0.02 | Sep 28, 2017 | The Googlemaps plugin 3.2 and earlier for Joomla! allows remote attackers with control of a sub-domain belonging to a victim domain to cause a denial of service via the 'url' parameter to plugin_googlemap3_kmlprxy.php. NOTE: this vulnerability exists because of an incomplete… | ||
| CVE-2015-4072 | Med | 0.38 | 5.4 | 0.03 | Sep 20, 2017 | Multiple cross-site scripting (XSS) vulnerabilities in the Helpdesk Pro plugin before 1.4.0 for Joomla! allow remote attackers to inject arbitrary web script or HTML via vectors related to name and message. | ||
| CVE-2015-4071 | Med | 0.38 | 5.3 | 0.10 | Aug 18, 2017 | The Helpdesk Pro Plugin before 1.4.0 for Joomla! allows remote attackers to read the support tickets of arbitrary users via obtaining the target ticketId, and navigating to http://{target}/component/helpdeskpro/?view=ticket&id={ticketId}. | ||
| CVE-2015-3619 | Med | 0.35 | 5.4 | 0.01 | Feb 6, 2018 | Cross-site scripting (XSS) vulnerability in assets/js/vm2admin.js in the VirtueMart component before 3.0.8 for Joomla! allows remote attackers to inject arbitrary web script or HTML via vectors involving a "double encode combination of first_name, last_name and company." | ||
| CVE-2013-7431 | Med | 0.35 | 5.3 | 0.01 | Aug 29, 2017 | Full path disclosure in the Googlemaps plugin before 3.1 for Joomla!. | ||
| CVE-2017-8057 | Med | 0.35 | 5.3 | 0.01 | Apr 25, 2017 | In Joomla! 3.4.0 through 3.6.5 (fixed in 3.7.0), multiple files caused full path disclosures on systems with enabled error reporting. | ||
| CVE-2017-7988 | Med | 0.35 | 5.3 | 0.01 | Apr 25, 2017 | In Joomla! 1.6.0 through 3.6.5 (fixed in 3.7.0), inadequate filtering of form contents allows overwriting the author of an article. | ||
| CVE-2017-7983 | Med | 0.35 | 5.3 | 0.01 | Apr 25, 2017 | In Joomla! 1.5.0 through 3.6.5 (fixed in 3.7.0), mail sent using the JMail API leaked the used PHPMailer version in the mail headers. | ||
| CVE-2005-4650 | Med | 0.35 | 5.3 | 0.02 | Dec 31, 2005 | Joomla! 1.03 does not restrict the number of "Search" Mambots, which allows remote attackers to cause a denial of service (resource consumption) via a large number of Search Mambots. | ||
| CVE-2018-25327 | Med | 0.34 | 5.3 | 0.00 | May 17, 2026 | Joomla! Component Js Jobs 1.2.0 contains a cross-site request forgery vulnerability that allows attackers to perform state-changing actions without token validation. Attackers can craft malicious HTML forms targeting administrative endpoints like job.jobenforcedelete to delete… | ||
| CVE-2018-11328 | Med | 0.31 | 4.7 | 0.01 | May 22, 2018 | An issue was discovered in Joomla! Core before 3.8.8. Under specific circumstances (a redirect issued with a URI containing a username and password when the Location: header cannot be used), a lack of escaping the user-info component of the URI could result in an XSS… | ||
| CVE-2016-1000121 | Med | 0.31 | 4.8 | 0.01 | Oct 27, 2016 | XSS and SQLi in Huge IT Joomla Slider v1.0.9 extension | ||
| CVE-2026-48900 | Med | 0.28 | 4.3 | 0.00 | May 26, 2026 | An improper access check allowed low privileged users to edit the task types of existing scheduler tasks. | ||
| CVE-2026-35220 | Med | 0.28 | 4.3 | 0.00 | May 26, 2026 | Lack of CSRF token validation lead to a CSRF attack vector in the admin activation endpoint of com_users. | ||
| CVE-2018-25354 | Med | 0.28 | 4.3 | 0.00 | May 23, 2026 | Joomla Component jomres 9.11.2 contains a cross-site request forgery vulnerability that allows attackers to modify user account information by tricking authenticated users into visiting malicious pages. Attackers can craft HTML forms targeting the account/index endpoint with… | ||
| CVE-2018-25337 | Med | 0.28 | 4.3 | 0.00 | May 17, 2026 | Joomla JoomOCShop 1.0 contains a cross-site request forgery vulnerability that allows attackers to perform unauthorized actions on behalf of authenticated users. Attackers can craft malicious HTML forms targeting account endpoints like /joomoc2/?route=account/edit and to modify… | ||
| CVE-2026-21632 | Med | 0.28 | 5.4 | 0.00 | Apr 1, 2026 | Lack of output escaping for article titles leads to XSS vectors in various locations. | ||
| CVE-2026-21631 | Med | 0.28 | 5.4 | 0.00 | Apr 1, 2026 | Lack of output escaping leads to a XSS vector in the multilingual associations component. | ||
| CVE-2018-17859 | Med | 0.28 | 4.3 | 0.01 | Oct 9, 2018 | An issue was discovered in Joomla! before 3.8.13. Inadequate checks in com_contact could allow mail submission in disabled forms. | ||
| CVE-2018-17857 | Med | 0.28 | 4.3 | 0.01 | Oct 9, 2018 | An issue was discovered in Joomla! before 3.8.13. Inadequate checks on the tags search fields can lead to an access level violation. | ||
| CVE-2018-15880 | Med | 0.28 | 5.4 | 0.01 | Aug 29, 2018 | An issue was discovered in Joomla! before 3.8.12. Inadequate output filtering on the user profile page could lead to a stored XSS attack. | ||
| CVE-2018-11327 | Med | 0.28 | 4.3 | 0.01 | May 22, 2018 | An issue was discovered in Joomla! Core before 3.8.8. Inadequate checks allowed users to see the names of tags that were either unpublished or published with restricted view permission. | ||
| CVE-2017-16633 | Med | 0.28 | 4.3 | 0.02 | Nov 10, 2017 | In Joomla! before 3.8.2, a logic bug in com_fields exposed read-only information about a site's custom fields to unauthorized users. | ||
| CVE-2025-54476 | Med | 0.24 | — | 0.00 | Sep 30, 2025 | Improper handling of input could lead to an XSS vector in the checkAttribute method of the input filter framework class. | ||
| CVE-2017-14595 | Low | 0.24 | 3.7 | 0.02 | Sep 20, 2017 | In Joomla! before 3.8.0, a logic bug in a SQL query could lead to the disclosure of article intro texts when these articles are in the archived state. | ||
| CVE-2023-23752 | 0.16 | — | 1.00 | KEV | Feb 16, 2023 | An issue was discovered in Joomla! 4.0.0 through 4.2.7. An improper access check allows unauthorized access to webservice endpoints. | ||
| CVE-2015-8562 | 0.11 | — | 0.98 | Dec 16, 2015 | Joomla! 1.5.x, 2.x, and 3.x before 3.4.6 allow remote attackers to conduct PHP object injection attacks and execute arbitrary PHP code via the HTTP User-Agent header, as exploited in the wild in December 2015. | |||
| CVE-2015-7857 | 0.11 | — | 0.94 | Oct 29, 2015 | SQL injection vulnerability in the getListQuery function in administrator/components/com_contenthistory/models/history.php in Joomla! 3.2 before 3.4.5 allows remote attackers to execute arbitrary SQL commands via the list[select] parameter to index.php. | |||
| CVE-2015-7297 | 0.11 | — | 1.00 | Oct 29, 2015 | SQL injection vulnerability in Joomla! 3.2 before 3.4.4 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, a different vulnerability than CVE-2015-7858. | |||
| CVE-2015-7858 | 0.10 | — | 0.85 | Oct 29, 2015 | SQL injection vulnerability in Joomla! 3.2 before 3.4.4 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, a different vulnerability than CVE-2015-7297. | |||
| CVE-2020-23972 | 0.09 | — | 0.31 | Aug 27, 2020 | In Joomla Component GMapFP Version J3.5 and J3.5free, an attacker can access the upload function without authenticating to the application and can also upload files which due to issues of unrestricted file uploads which can be bypassed by changing the content-type and name file… | |||
| CVE-2019-10945 | 0.09 | — | 0.38 | Apr 10, 2019 | An issue was discovered in Joomla! before 3.9.5. The Media Manager component does not properly sanitize the folder parameter, allowing attackers to act outside the media manager root directory. | |||
| CVE-2011-4908 | 0.08 | — | 0.56 | Feb 12, 2020 | TinyBrowser plugin for Joomla! before 1.5.13 allows arbitrary file upload via upload.php. | |||
| CVE-2008-5053 | 0.08 | — | 0.63 | Nov 13, 2008 | PHP remote file inclusion vulnerability in admin.rssreader.php in the Simple RSS Reader (com_rssreader) 1.0 component for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_live_site parameter. | |||
| CVE-2014-7228 | 0.07 | — | 0.55 | Nov 3, 2014 | Akeeba Restore (restore.php), as used in Joomla! 2.5.4 through 2.5.25, 3.x through 3.2.5, and 3.3.0 through 3.3.4; Akeeba Backup for Joomla! Professional 3.0.0 through 4.0.2; Backup Professional for WordPress 1.0.b1 through 1.1.3; Solo 1.0.b1 through 1.1.2; Admin Tools Core and… | |||
| CVE-2008-1505 | 0.07 | — | 0.46 | Mar 25, 2008 | PHP remote file inclusion vulnerability in the SSTREAMTV custompages (com_custompages) 1.1 and earlier component for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the cpage parameter to index.php. | |||
| CVE-2007-2199 | 0.07 | — | 0.47 | Apr 24, 2007 | PHP remote file inclusion vulnerability in lib/pcltar.lib.php (aka pcltar.php) in the PclTar module 1.3 and 1.3.1 for Vincent Blavet PhpConcept Library, as used in multiple products including (1) Joomla! 1.5.0 Beta, (2) N/X Web Content Management System (WCMS) 4.5, (3) CJG… | |||
| CVE-2011-4906 | 0.06 | — | 0.10 | Feb 12, 2020 | Tiny browser in TinyMCE 3.0 editor in Joomla! before 1.5.13 allows file upload and arbitrary PHP code execution. |
- risk 0.40cvss 6.1epss 0.02
In Joomla! before 3.8.4, inadequate input filtering in the Uri class (formerly JUri) leads to an XSS vulnerability.
- risk 0.40cvss 6.1epss 0.01
Open redirect vulnerability in Joomla! CMS 3.0.0 through 3.4.1.
- risk 0.40cvss 6.1epss 0.01
Cross-site scripting (XSS) vulnerability in the Googlemaps plugin before 3.1 for Joomla!.
- risk 0.40cvss 6.1epss 0.01
Cross-site scripting (XSS) vulnerability in the Googlemaps plugin before 3.1 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the xmlns parameter.
- risk 0.40cvss 6.1epss 0.01
In Joomla! before 3.7.4, inadequate filtering of potentially malicious HTML tags leads to XSS vulnerabilities in various components.
- risk 0.40cvss 6.1epss 0.02
Missing CSRF token checks and improper input validation in Joomla! CMS 1.7.3 through 3.7.2 lead to an XSS vulnerability.
- risk 0.40cvss 6.1epss 0.01
In Joomla! 3.2.0 through 3.6.5 (fixed in 3.7.0), inadequate escaping of file and folder names leads to XSS vulnerabilities in the template manager component.
- risk 0.40cvss 6.1epss 0.01
In Joomla! 1.5.0 through 3.6.5 (fixed in 3.7.0), inadequate filtering of specific HTML attributes leads to XSS vulnerabilities in various components.
- risk 0.40cvss 6.1epss 0.01
In Joomla! 1.5.0 through 3.6.5 (fixed in 3.7.0), inadequate filtering of multibyte characters leads to XSS vulnerabilities in various components.
- risk 0.40cvss 6.1epss 0.01
In Joomla! 3.2.0 through 3.6.5 (fixed in 3.7.0), inadequate filtering leads to XSS in the template manager component.
- risk 0.40cvss 6.1epss 0.01
XSS in huge IT gallery v1.1.5 for Joomla
- risk 0.38cvss 5.9epss 0.01
An issue was discovered in Joomla! Core before 3.8.8. A long running background process, such as remote checks for core or extension updates, could create a race condition where a session that was expected to be destroyed would be recreated.
- risk 0.38cvss 5.9epss 0.02
The Googlemaps plugin 3.2 and earlier for Joomla! allows remote attackers with control of a sub-domain belonging to a victim domain to cause a denial of service via the 'url' parameter to plugin_googlemap3_kmlprxy.php. NOTE: this vulnerability exists because of an incomplete…
- risk 0.38cvss 5.4epss 0.03
Multiple cross-site scripting (XSS) vulnerabilities in the Helpdesk Pro plugin before 1.4.0 for Joomla! allow remote attackers to inject arbitrary web script or HTML via vectors related to name and message.
- risk 0.38cvss 5.3epss 0.10
The Helpdesk Pro Plugin before 1.4.0 for Joomla! allows remote attackers to read the support tickets of arbitrary users via obtaining the target ticketId, and navigating to http://{target}/component/helpdeskpro/?view=ticket&id={ticketId}.
- risk 0.35cvss 5.4epss 0.01
Cross-site scripting (XSS) vulnerability in assets/js/vm2admin.js in the VirtueMart component before 3.0.8 for Joomla! allows remote attackers to inject arbitrary web script or HTML via vectors involving a "double encode combination of first_name, last_name and company."
- risk 0.35cvss 5.3epss 0.01
Full path disclosure in the Googlemaps plugin before 3.1 for Joomla!.
- risk 0.35cvss 5.3epss 0.01
In Joomla! 3.4.0 through 3.6.5 (fixed in 3.7.0), multiple files caused full path disclosures on systems with enabled error reporting.
- risk 0.35cvss 5.3epss 0.01
In Joomla! 1.6.0 through 3.6.5 (fixed in 3.7.0), inadequate filtering of form contents allows overwriting the author of an article.
- risk 0.35cvss 5.3epss 0.01
In Joomla! 1.5.0 through 3.6.5 (fixed in 3.7.0), mail sent using the JMail API leaked the used PHPMailer version in the mail headers.
- risk 0.35cvss 5.3epss 0.02
Joomla! 1.03 does not restrict the number of "Search" Mambots, which allows remote attackers to cause a denial of service (resource consumption) via a large number of Search Mambots.
- risk 0.34cvss 5.3epss 0.00
Joomla! Component Js Jobs 1.2.0 contains a cross-site request forgery vulnerability that allows attackers to perform state-changing actions without token validation. Attackers can craft malicious HTML forms targeting administrative endpoints like job.jobenforcedelete to delete…
- risk 0.31cvss 4.7epss 0.01
An issue was discovered in Joomla! Core before 3.8.8. Under specific circumstances (a redirect issued with a URI containing a username and password when the Location: header cannot be used), a lack of escaping the user-info component of the URI could result in an XSS…
- risk 0.31cvss 4.8epss 0.01
XSS and SQLi in Huge IT Joomla Slider v1.0.9 extension
- risk 0.28cvss 4.3epss 0.00
An improper access check allowed low privileged users to edit the task types of existing scheduler tasks.
- risk 0.28cvss 4.3epss 0.00
Lack of CSRF token validation lead to a CSRF attack vector in the admin activation endpoint of com_users.
- risk 0.28cvss 4.3epss 0.00
Joomla Component jomres 9.11.2 contains a cross-site request forgery vulnerability that allows attackers to modify user account information by tricking authenticated users into visiting malicious pages. Attackers can craft HTML forms targeting the account/index endpoint with…
- risk 0.28cvss 4.3epss 0.00
Joomla JoomOCShop 1.0 contains a cross-site request forgery vulnerability that allows attackers to perform unauthorized actions on behalf of authenticated users. Attackers can craft malicious HTML forms targeting account endpoints like /joomoc2/?route=account/edit and to modify…
- risk 0.28cvss 5.4epss 0.00
Lack of output escaping for article titles leads to XSS vectors in various locations.
- risk 0.28cvss 5.4epss 0.00
Lack of output escaping leads to a XSS vector in the multilingual associations component.
- risk 0.28cvss 4.3epss 0.01
An issue was discovered in Joomla! before 3.8.13. Inadequate checks in com_contact could allow mail submission in disabled forms.
- risk 0.28cvss 4.3epss 0.01
An issue was discovered in Joomla! before 3.8.13. Inadequate checks on the tags search fields can lead to an access level violation.
- risk 0.28cvss 5.4epss 0.01
An issue was discovered in Joomla! before 3.8.12. Inadequate output filtering on the user profile page could lead to a stored XSS attack.
- risk 0.28cvss 4.3epss 0.01
An issue was discovered in Joomla! Core before 3.8.8. Inadequate checks allowed users to see the names of tags that were either unpublished or published with restricted view permission.
- risk 0.28cvss 4.3epss 0.02
In Joomla! before 3.8.2, a logic bug in com_fields exposed read-only information about a site's custom fields to unauthorized users.
- risk 0.24cvss —epss 0.00
Improper handling of input could lead to an XSS vector in the checkAttribute method of the input filter framework class.
- risk 0.24cvss 3.7epss 0.02
In Joomla! before 3.8.0, a logic bug in a SQL query could lead to the disclosure of article intro texts when these articles are in the archived state.
- risk 0.16cvss —epss 1.00
An issue was discovered in Joomla! 4.0.0 through 4.2.7. An improper access check allows unauthorized access to webservice endpoints.
- CVE-2015-8562Dec 16, 2015risk 0.11cvss —epss 0.98
Joomla! 1.5.x, 2.x, and 3.x before 3.4.6 allow remote attackers to conduct PHP object injection attacks and execute arbitrary PHP code via the HTTP User-Agent header, as exploited in the wild in December 2015.
- CVE-2015-7857Oct 29, 2015risk 0.11cvss —epss 0.94
SQL injection vulnerability in the getListQuery function in administrator/components/com_contenthistory/models/history.php in Joomla! 3.2 before 3.4.5 allows remote attackers to execute arbitrary SQL commands via the list[select] parameter to index.php.
- CVE-2015-7297Oct 29, 2015risk 0.11cvss —epss 1.00
SQL injection vulnerability in Joomla! 3.2 before 3.4.4 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, a different vulnerability than CVE-2015-7858.
- CVE-2015-7858Oct 29, 2015risk 0.10cvss —epss 0.85
SQL injection vulnerability in Joomla! 3.2 before 3.4.4 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, a different vulnerability than CVE-2015-7297.
- CVE-2020-23972Aug 27, 2020risk 0.09cvss —epss 0.31
In Joomla Component GMapFP Version J3.5 and J3.5free, an attacker can access the upload function without authenticating to the application and can also upload files which due to issues of unrestricted file uploads which can be bypassed by changing the content-type and name file…
- CVE-2019-10945Apr 10, 2019risk 0.09cvss —epss 0.38
An issue was discovered in Joomla! before 3.9.5. The Media Manager component does not properly sanitize the folder parameter, allowing attackers to act outside the media manager root directory.
- CVE-2011-4908Feb 12, 2020risk 0.08cvss —epss 0.56
TinyBrowser plugin for Joomla! before 1.5.13 allows arbitrary file upload via upload.php.
- CVE-2008-5053Nov 13, 2008risk 0.08cvss —epss 0.63
PHP remote file inclusion vulnerability in admin.rssreader.php in the Simple RSS Reader (com_rssreader) 1.0 component for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_live_site parameter.
- CVE-2014-7228Nov 3, 2014risk 0.07cvss —epss 0.55
Akeeba Restore (restore.php), as used in Joomla! 2.5.4 through 2.5.25, 3.x through 3.2.5, and 3.3.0 through 3.3.4; Akeeba Backup for Joomla! Professional 3.0.0 through 4.0.2; Backup Professional for WordPress 1.0.b1 through 1.1.3; Solo 1.0.b1 through 1.1.2; Admin Tools Core and…
- CVE-2008-1505Mar 25, 2008risk 0.07cvss —epss 0.46
PHP remote file inclusion vulnerability in the SSTREAMTV custompages (com_custompages) 1.1 and earlier component for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the cpage parameter to index.php.
- CVE-2007-2199Apr 24, 2007risk 0.07cvss —epss 0.47
PHP remote file inclusion vulnerability in lib/pcltar.lib.php (aka pcltar.php) in the PclTar module 1.3 and 1.3.1 for Vincent Blavet PhpConcept Library, as used in multiple products including (1) Joomla! 1.5.0 Beta, (2) N/X Web Content Management System (WCMS) 4.5, (3) CJG…
- CVE-2011-4906Feb 12, 2020risk 0.06cvss —epss 0.10
Tiny browser in TinyMCE 3.0 editor in Joomla! before 1.5.13 allows file upload and arbitrary PHP code execution.
Page 4 of 22