Vulnerabilities > Joomla
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-06-11 | CVE-2019-12764 | Unspecified vulnerability in Joomla Joomla! An issue was discovered in Joomla! before 3.9.7. | 6.5 |
| 2019-05-20 | CVE-2019-11809 | Cross-site Scripting vulnerability in Joomla Joomla! An issue was discovered in Joomla! before 3.9.6. | 6.1 |
| 2019-05-09 | CVE-2019-11831 | Deserialization of Untrusted Data vulnerability in multiple products The PharStreamWrapper (aka phar-stream-wrapper) package 2.x before 2.1.1 and 3.x before 3.1.1 for TYPO3 does not prevent directory traversal, which allows attackers to bypass a deserialization protection mechanism, as demonstrated by a phar:///path/bad.phar/../good.phar URL. | 9.8 |
| 2019-04-20 | CVE-2019-11358 | jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. | 6.1 |
| 2019-04-10 | CVE-2019-10946 | Missing Authentication for Critical Function vulnerability in Joomla Joomla! An issue was discovered in Joomla! before 3.9.5. | 7.5 |
| 2019-04-10 | CVE-2019-10945 | Path Traversal vulnerability in Joomla Joomla! An issue was discovered in Joomla! before 3.9.5. | 9.8 |
| 2019-03-12 | CVE-2019-9714 | Cross-site Scripting vulnerability in Joomla Joomla! An issue was discovered in Joomla! before 3.9.4. | 6.1 |
| 2019-03-12 | CVE-2019-9713 | Missing Authorization vulnerability in Joomla Joomla! An issue was discovered in Joomla! before 3.9.4. | 7.5 |
| 2019-03-12 | CVE-2019-9712 | Cross-site Scripting vulnerability in Joomla Joomla! An issue was discovered in Joomla! before 3.9.4. | 6.1 |
| 2019-03-12 | CVE-2019-9711 | Cross-site Scripting vulnerability in Joomla Joomla! An issue was discovered in Joomla! before 3.9.4. | 6.1 |