Vulnerabilities > Joomla > Joomla > 3.0.2

DATE CVE VULNERABILITY TITLE RISK
2013-05-03 CVE-2013-3056 Permissions, Privileges, and Access Controls vulnerability in Joomla Joomla!
Joomla! 2.5.x before 2.5.10 and 3.0.x before 3.0.4 allows remote authenticated users to bypass intended privilege requirements and delete the private messages of arbitrary users via unspecified vectors.
network
low complexity
joomla CWE-264
4.0
4.0
2013-02-13 CVE-2013-1454 Information Exposure vulnerability in Joomla Joomla! 3.0.0/3.0.1/3.0.2
Joomla! 3.0.x through 3.0.2 allows attackers to obtain sensitive information via unspecified vectors related to "Coding errors."
network
low complexity
joomla CWE-200
5.0
5.0
2013-02-13 CVE-2013-1453 Unspecified vulnerability in Joomla Joomla!
plugins/system/highlight/highlight.php in Joomla! 3.0.x through 3.0.2 and 2.5.x through 2.5.8 allows attackers to unserialize arbitrary PHP objects to obtain sensitive information, delete arbitrary directories, conduct SQL injection attacks, and possibly have other impacts via the highlight parameter.
network
low complexity
joomla
7.5
7.5