Exposição de Joomla

CMS

393

score de exposição

100.048

sites usam

2

em exploração

24

críticos

CVEs

216 resultados

CVE-2024-21722MEDIUM[20240201] - Core - Insufficient session expiration in MFA management viewsEPSS 0.5%CVE-2023-34477—Extension - braincert.com - SQLi in Virtual Classroom component for Joomla <= 1.6.0EPSS 0.5%CVE-2023-34476—Extension - mooj.org - SQLi in Proforms Basic component for Joomla <= 1.6.0EPSS 0.5%CVE-2023-23758—Extension - creative-solutions.net - SQLi in Creative Gallery component for Joomla <= 2.2.0EPSS 0.5%CVE-2023-23757—Extension - bestaddon.com - SQLi in BA Gallery component for Joomla <= 1.2.0EPSS 0.5%CVE-2022-27912—[20221001] - Core - Debug Mode leaks full request payloads including passwordsEPSS 0.5%CVE-2024-40744CRITICALExtension - tassos.gr - Unrestricted file upload in Convert Forms component for Joomla < 4.4.8EPSS 0.5%CVE-2022-27911—[20220801] - Core - Multiple Full Path Disclosures because of missing '_JEXEC or die check'EPSS 0.5%CVE-2026-40383HIGHJoomla! Core - [20260509] - LFI in HTMLView layout parameterEPSS 0.5%CVE-2025-30085CRITICALExtension - rsjoomla.com - Remote code execution vulnerability in RSForm!pro component 3.0.0 - 3.3.14 for JoomlaEPSS 0.5%CVE-2025-22205HIGHExtension - admiror-design-studio.com - Path traversal in the Admiror Gallery 4.x component for JoomlaEPSS 0.5%CVE-2025-22210HIGHExtension - hikashop.com - SQL injection in Hikashop component version 3.3.0 - 5.1.4 for JoomlaEPSS 0.5%CVE-2024-26279MEDIUM[20240704] - Core - XSS in Wrapper extensionsEPSS 0.5%CVE-2022-27914—[20221101] - Core - RXSS through reflection of user input in com_mediaEPSS 0.5%CVE-2026-23898HIGHJoomla! Core - [20260305] - Arbitrary file deletion in com_joomlaupdateEPSS 0.5%CVE-2025-22213HIGH[20250301] - Core - Malicious file uploads via Media ManagerEPSS 0.5%CVE-2024-26278MEDIUM[20240705] - Core - XSS in com_fields default field valueEPSS 0.4%CVE-2026-40384MEDIUMJoomla! Core - [20260510] - Path traversal in com_media webservice endpointEPSS 0.4%CVE-2023-23751MEDIUM[20230102] - Core - Missing ACL checks for com_actionlogsEPSS 0.4%CVE-2024-21731MEDIUM[20240703] - Core - XSS in StringHelper::truncate methodEPSS 0.4%

← anteriorpágina 5 / 11próxima →

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →