Exposure of Joomla
CMS411
exposure score
100,048
sites use
2
exploited
24
critical
CVEs
223 resultsCVE-2025-27754MEDIUMExtension - rsjoomla.com - A stored XSS vulnerability RSBlog! component 1.11.6 - 1.14.4 for JoomlaEPSS 0.2%CVE-2025-55757MEDIUMExtension - virtuemart.net - XSS in VirtueMart component 1.0.0 - 4.4.10 for JoomlaEPSS 0.2%CVE-2025-30084MEDIUMExtension - rsjoomla.com - Reflected XSS vulnerability RSMail! component 1.19.20-1.22.26 for JoomlaEPSS 0.2%CVE-2026-48943MEDIUMJoomla Extension - getk2.com - Authenticated user property mass-assignment in K2 extension for Joomla < 2.26EPSS 0.2%CVE-2026-21624CRITICALExtension - stackideas.com - Persistent XSS in EasyDiscuss component 1.0.0-5.0.15 for JoomlaEPSS 0.2%CVE-2026-21623CRITICALExtension - stackideas.com - Persistent XSS in EasyDiscuss component 1.0.0-5.0.15 for JoomlaEPSS 0.2%CVE-2026-30895MEDIUMJoomla! Core - [20260504] - XSS in readmore linksEPSS 0.2%CVE-2026-25900MEDIUMJoomla! Core - [20260501] - XSS in feed modulesEPSS 0.2%CVE-2026-30894MEDIUMJoomla! Core - [20260503] - XSS in com_contenthistoryEPSS 0.2%CVE-2026-25901MEDIUMJoomla! Core - [20260502] - XSS in com_associationsEPSS 0.2%CVE-2025-63082MEDIUMJoomla! Core - [20260101] - Inadequate content filtering for data URLsEPSS 0.2%CVE-2025-63083MEDIUMJoomla! Core - [20260102] - XSS vector in the pagebreak pluginEPSS 0.2%CVE-2026-48946MEDIUMJoomla Extension - getk2.com - Privileged RCE vulnerability in K2 extension for Joomla < 2.26EPSS 0.2%CVE-2026-48940LOWJoomla Extension - getk2.com - Stored-XSS in K2 extension for Joomla < 2.26EPSS 0.2%CVE-2018-25337MEDIUMJoomla JoomOCShop 1.0 Cross-Site Request ForgeryEPSS 0.2%CVE-2026-48941MEDIUMJoomla Extension - getk2.com - Unauthenticated folder delete in K2 extension for Joomla < 2.26EPSS 0.2%CVE-2026-48900MEDIUMJoomla! Core - [20260516] - Incorrect Access Control in com_schedulerEPSS 0.2%CVE-2025-25225MEDIUMExtension - hikashop.com - Privilege escalation vulnerability Hikashop component version 1.0.0 - 5.1.3 for JoomlaEPSS 0.1%CVE-2026-48942MEDIUMJoomla Extension - getk2.com - Stored-XSS in K2 extension for Joomla < 2.26EPSS 0.1%CVE-2026-48903MEDIUMJoomla! Framework - [20260519] - Inadequate content filtering within the checkAttribute filter code.EPSS 0.1%
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →