Vulnerabilities > Joomla
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-05-22 | CVE-2018-6378 | Cross-site Scripting vulnerability in Joomla Joomla! In Joomla! Core before 3.8.8, inadequate filtering of file and folder names leads to various XSS attack vectors in the media manager. | 6.1 |
| 2018-05-22 | CVE-2018-11328 | Cross-site Scripting vulnerability in Joomla Joomla! An issue was discovered in Joomla! Core before 3.8.8. | 4.7 |
| 2018-05-22 | CVE-2018-11327 | Information Exposure vulnerability in Joomla Joomla! An issue was discovered in Joomla! Core before 3.8.8. | 4.3 |
| 2018-05-22 | CVE-2018-11326 | Cross-site Scripting vulnerability in Joomla Joomla! An issue was discovered in Joomla! Core before 3.8.8. | 4.8 |
| 2018-05-22 | CVE-2018-11325 | Information Exposure Through an Error Message vulnerability in Joomla Joomla! An issue was discovered in Joomla! Core before 3.8.8. | 9.8 |
| 2018-05-22 | CVE-2018-11324 | Race Condition vulnerability in Joomla Joomla! An issue was discovered in Joomla! Core before 3.8.8. | 5.9 |
| 2018-05-22 | CVE-2018-11323 | Improper Privilege Management vulnerability in Joomla Joomla! An issue was discovered in Joomla! Core before 3.8.8. | 8.8 |
| 2018-05-22 | CVE-2018-11322 | Unrestricted Upload of File with Dangerous Type vulnerability in Joomla Joomla! An issue was discovered in Joomla! Core before 3.8.8. | 7.5 |
| 2018-05-22 | CVE-2018-11321 | Improper Input Validation vulnerability in Joomla Joomla! An issue was discovered in com_fields in Joomla! Core before 3.8.8. | 6.5 |
| 2018-03-15 | CVE-2018-8045 | SQL Injection vulnerability in Joomla Joomla! In Joomla! 3.5.0 through 3.8.5, the lack of type casting of a variable in a SQL statement leads to a SQL injection vulnerability in the User Notes list view. | 8.8 |