Vulnerabilities > Joomla > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-07-09 | CVE-2024-21729 | Cross-site Scripting vulnerability in Joomla Joomla! Inadequate input validation leads to XSS vulnerabilities in the accessiblemedia field. | 6.1 |
| 2024-07-09 | CVE-2024-21730 | Cross-site Scripting vulnerability in Joomla Joomla! The fancyselect list field layout does not correctly escape inputs, leading to a self-XSS vector. | 5.4 |
| 2024-07-09 | CVE-2024-21731 | Cross-site Scripting vulnerability in Joomla Joomla! Improper handling of input could lead to an XSS vector in the StringHelper::truncate method. | 6.1 |
| 2024-07-09 | CVE-2024-26278 | Cross-site Scripting vulnerability in Joomla Joomla! The Custom Fields component not correctly filter inputs, leading to a XSS vector. | 6.1 |
| 2024-07-09 | CVE-2024-26279 | Cross-site Scripting vulnerability in Joomla Joomla! The wrapper extensions do not correctly validate inputs, leading to XSS vectors. | 6.1 |
| 2023-05-30 | CVE-2023-23754 | Open Redirect vulnerability in Joomla Joomla! An issue was discovered in Joomla! 4.2.0 through 4.3.1. | 6.1 |
| 2023-02-16 | CVE-2023-23752 | Unspecified vulnerability in Joomla Joomla! An issue was discovered in Joomla! 4.0.0 through 4.2.7. | 5.3 |
| 2023-02-01 | CVE-2023-23750 | Cross-Site Request Forgery (CSRF) vulnerability in Joomla Joomla! An issue was discovered in Joomla! 4.0.0 through 4.2.6. | 6.3 |
| 2023-02-01 | CVE-2023-23751 | Incorrect Authorization vulnerability in Joomla Joomla! An issue was discovered in Joomla! 4.0.0 through 4.2.4. | 4.3 |
| 2022-11-08 | CVE-2022-27914 | Cross-site Scripting vulnerability in Joomla Joomla! An issue was discovered in Joomla! 4.0.0 through 4.2.4. | 6.1 |