Vulnerabilities > Joomla > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-12-28 | CVE-2020-35612 | Path Traversal vulnerability in Joomla Joomla! An issue was discovered in Joomla! 2.5.0 through 3.9.22. | 7.5 |
| 2020-12-28 | CVE-2020-35611 | Information Exposure vulnerability in Joomla Joomla! An issue was discovered in Joomla! 2.5.0 through 3.9.22. | 7.5 |
| 2020-12-28 | CVE-2020-35610 | Unspecified vulnerability in Joomla Joomla! An issue was discovered in Joomla! 2.5.0 through 3.9.22. | 7.5 |
| 2020-06-02 | CVE-2020-13763 | Improper Preservation of Permissions vulnerability in Joomla Joomla! In Joomla! before 3.9.19, the default settings of the global textfilter configuration do not block HTML inputs for Guest users. | 7.5 |
| 2020-06-02 | CVE-2020-13760 | Cross-Site Request Forgery (CSRF) vulnerability in Joomla Joomla! In Joomla! before 3.9.19, missing token checks in com_postinstall lead to CSRF. | 8.8 |
| 2020-03-16 | CVE-2020-10241 | Cross-Site Request Forgery (CSRF) vulnerability in Joomla Joomla! An issue was discovered in Joomla! before 3.9.16. | 8.8 |
| 2020-03-16 | CVE-2020-10239 | Incorrect Authorization vulnerability in Joomla Joomla! An issue was discovered in Joomla! before 3.9.16. | 8.8 |
| 2020-03-16 | CVE-2020-10238 | Exposure of Resource to Wrong Sphere vulnerability in Joomla Joomla! An issue was discovered in Joomla! before 3.9.16. | 7.5 |
| 2020-02-04 | CVE-2011-4937 | Information Exposure vulnerability in Joomla Joomla! Joomla! 1.7.1 has core information disclosure due to inadequate error checking. | 7.5 |
| 2020-02-04 | CVE-2011-3629 | Inadequate Encryption Strength vulnerability in Joomla Joomla! Joomla! core 1.7.1 allows information disclosure due to weak encryption | 7.5 |