Vulnerabilities > Joomla > Joomla > Medium

DATE CVE VULNERABILITY TITLE RISK
2019-08-05 CVE-2019-14654 Unspecified vulnerability in Joomla Joomla! 3.9.7/3.9.8
In Joomla! 3.9.7 and 3.9.8, inadequate filtering allows users authorised to create custom fields to manipulate the filtering options and inject an unvalidated option.
network
low complexity
joomla
6.5
6.5
2019-06-11 CVE-2019-12766 Cross-site Scripting vulnerability in Joomla Joomla!
An issue was discovered in Joomla! before 3.9.7.
network
low complexity
joomla CWE-79
6.1
6.1
2019-06-11 CVE-2019-12764 Unspecified vulnerability in Joomla Joomla!
An issue was discovered in Joomla! before 3.9.7.
network
low complexity
joomla
6.5
6.5
2019-05-20 CVE-2019-11809 Cross-site Scripting vulnerability in Joomla Joomla!
An issue was discovered in Joomla! before 3.9.6.
network
joomla CWE-79
4.3
4.3
2019-04-20 CVE-2019-11358 jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. 6.1
6.1
2019-04-10 CVE-2019-10946 Missing Authentication for Critical Function vulnerability in Joomla Joomla!
An issue was discovered in Joomla! before 3.9.5.
network
low complexity
joomla CWE-306
5.0
5.0
2019-03-12 CVE-2019-9714 Cross-site Scripting vulnerability in Joomla Joomla!
An issue was discovered in Joomla! before 3.9.4.
network
joomla CWE-79
4.3
4.3
2019-03-12 CVE-2019-9713 Missing Authorization vulnerability in Joomla Joomla!
An issue was discovered in Joomla! before 3.9.4.
network
low complexity
joomla CWE-862
5.0
5.0
2019-03-12 CVE-2019-9712 Cross-site Scripting vulnerability in Joomla Joomla!
An issue was discovered in Joomla! before 3.9.4.
network
joomla CWE-79
4.3
4.3
2019-03-12 CVE-2019-9711 Cross-site Scripting vulnerability in Joomla Joomla!
An issue was discovered in Joomla! before 3.9.4.
network
joomla CWE-79
4.3
4.3