Vulnerabilities > Joomla > Joomla > 3.10.9

DATE CVE VULNERABILITY TITLE RISK
2024-07-09 CVE-2024-21731 Cross-site Scripting vulnerability in Joomla Joomla!
Improper handling of input could lead to an XSS vector in the StringHelper::truncate method.
network
low complexity
joomla CWE-79
6.1
6.1
2024-07-09 CVE-2024-26278 Cross-site Scripting vulnerability in Joomla Joomla!
The Custom Fields component not correctly filter inputs, leading to a XSS vector.
network
low complexity
joomla CWE-79
6.1
6.1
2024-07-09 CVE-2024-26279 Cross-site Scripting vulnerability in Joomla Joomla!
The wrapper extensions do not correctly validate inputs, leading to XSS vectors.
network
low complexity
joomla CWE-79
6.1
6.1
2024-02-29 CVE-2024-21724 Cross-site Scripting vulnerability in Joomla Joomla!
Inadequate input validation for media selection fields lead to XSS vulnerabilities in various extensions.
network
low complexity
joomla CWE-79
6.1
6.1
2023-11-29 CVE-2023-40626 Unspecified vulnerability in Joomla Joomla!
The language file parsing process could be manipulated to expose environment variables.
network
low complexity
joomla
7.5
7.5