Vulnerabilities > Joomla > High

DATE CVE VULNERABILITY TITLE RISK
2020-12-28 CVE-2020-35612 Path Traversal vulnerability in Joomla Joomla!
An issue was discovered in Joomla! 2.5.0 through 3.9.22.
network
low complexity
joomla CWE-22
7.5
2020-12-28 CVE-2020-35611 Information Exposure vulnerability in Joomla Joomla!
An issue was discovered in Joomla! 2.5.0 through 3.9.22.
network
low complexity
joomla CWE-200
7.5
2020-12-28 CVE-2020-35610 Unspecified vulnerability in Joomla Joomla!
An issue was discovered in Joomla! 2.5.0 through 3.9.22.
network
low complexity
joomla
7.5
2020-06-02 CVE-2020-13763 Improper Preservation of Permissions vulnerability in Joomla Joomla!
In Joomla! before 3.9.19, the default settings of the global textfilter configuration do not block HTML inputs for Guest users.
network
low complexity
joomla CWE-281
7.5
2020-06-02 CVE-2020-13760 Cross-Site Request Forgery (CSRF) vulnerability in Joomla Joomla!
In Joomla! before 3.9.19, missing token checks in com_postinstall lead to CSRF.
network
low complexity
joomla CWE-352
8.8
2020-03-16 CVE-2020-10241 Cross-Site Request Forgery (CSRF) vulnerability in Joomla Joomla!
An issue was discovered in Joomla! before 3.9.16.
network
low complexity
joomla CWE-352
8.8
2020-03-16 CVE-2020-10239 Incorrect Authorization vulnerability in Joomla Joomla!
An issue was discovered in Joomla! before 3.9.16.
network
low complexity
joomla CWE-863
8.8
2020-03-16 CVE-2020-10238 Exposure of Resource to Wrong Sphere vulnerability in Joomla Joomla!
An issue was discovered in Joomla! before 3.9.16.
network
low complexity
joomla CWE-668
7.5
2020-02-04 CVE-2011-4937 Information Exposure vulnerability in Joomla Joomla!
Joomla! 1.7.1 has core information disclosure due to inadequate error checking.
network
low complexity
joomla CWE-200
7.5
2020-02-04 CVE-2011-3629 Inadequate Encryption Strength vulnerability in Joomla Joomla!
Joomla! core 1.7.1 allows information disclosure due to weak encryption
network
low complexity
joomla CWE-326
7.5