Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Api Bfla Api Bola Api Broken Auth Api Broken Object Prop Auth Api Dos Api Improper Inventory Management Api Misconfiguration Api Ssrf Arbitrary File Creation Arbitrary File Read Arbitrary File Write Authentication Bypass BOLA Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities LLM Ldap Injection Llm Excessive Agency Llm Insecure Output Handling Llm Prompt Injection Llm Sensitive Information Disclosure Malware Missing Update Path Traversal Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Xss - Known Vulnerabilities Vulnerability Name CVE CWE CWE Severity Joomla! Core 4.0.0 Security Bypass (4.0.0) CVE-2021-26040 CWE-284 CWE-284 High Joomla! Core 4.2.0 Information Disclosure (4.2.0) CVE-2022-27911 CWE-200 CWE-200 High Joomla! Core 4.x.x Cross-Site Scripting (4.0.0 - 4.2.4) CVE-2022-27914 CWE-79 CWE-79 High Joomla! Core 4.x.x Multiple Vulnerabilities (4.0.0 - 4.1.0) CVE-2022-23793 CVE-2022-23794 CVE-2022-23795 CVE-2022-23797 CVE-2022-23798 CVE-2022-23799 CVE-2022-23800 CVE-2022-23801 CWE-22 CWE-79 CWE-89 CWE-200 CWE-287 CWE-601 CWE-22 CWE-79 CWE-89 CWE-200 CWE-287 CWE-601 High Joomla! Core 4.x.x Multiple Vulnerabilities (4.0.0 - 4.2.3) CVE-2022-27912 CVE-2022-27913 CWE-79 CWE-200 CWE-79 CWE-200 High Joomla! Core 4.x.x Multiple Vulnerabilities (4.0.0 - 4.2.6) CVE-2023-23750 CVE-2023-23751 CWE-352 CWE-862 CWE-352 CWE-862 High Joomla! Core 4.x.x Security Bypass (4.0.0 - 4.2.7) CVE-2023-23752 CWE-287 CWE-287 High Joomla! Core Arbitrary File Upload (2.5.0 - 3.8.7) CVE-2018-11322 CWE-434 CWE-434 High Joomla! Core Cross-Site Scripting (1.0.0 - 3.9.2) CVE-2019-7742 CWE-79 CWE-79 High Joomla! Core Cross-Site Scripting (1.5.0 - 3.7.3) CVE-2017-11612 CWE-79 CWE-79 High Joomla! Core Cross-Site Scripting (1.5.0 - 3.8.3) CVE-2018-6379 CWE-79 CWE-79 High Joomla! Core Cross-Site Scripting (1.6.0 - 3.6.0) CWE-79 CWE-79 High Joomla! Core Cross-Site Scripting (1.6.0 - 3.8.8) CVE-2018-12711 CWE-79 CWE-79 High Joomla! Core Cross-Site Scripting (1.7.0 - 3.9.5) CVE-2019-11809 CWE-79 CWE-79 High Joomla! Core Cross-Site Scripting (2.5.0 - 3.9.24) CVE-2021-23129 CWE-79 CWE-79 High Joomla! Core Denial of Service (2.5.0 - 3.9.27) CVE-2021-26036 CWE-400 CWE-400 High Joomla! Core Directory Traversal (1.5.0 - 3.9.4) CVE-2019-10945 CWE-22 CWE-22 High Joomla! Core Directory Traversal (2.5.0 - 3.9.20) CVE-2020-24597 CWE-22 CWE-22 High Joomla! Core Directory Traversal (2.5.0 - 3.9.22) CVE-2020-35612 CWE-22 CWE-22 High Joomla! Core improper access check in webservice endpoints CVE-2023-23752 CWE-200 CWE-200 Medium Joomla! Core Information Disclosure (1.5.0 - 3.7.5) CVE-2017-14596 CWE-200 CWE-200 High Joomla! Core Information Disclosure (1.5.0 - 3.8.1) CVE-2017-14596 CWE-200 CWE-200 High Joomla! Core Information Disclosure (2.5.0 - 3.9.22) CVE-2020-35611 CWE-200 CWE-200 High Joomla! Core Local File Inclusion (2.5.0 - 3.8.8) CVE-2018-12712 CWE-22 CWE-22 High Joomla! Core Multiple Cross-Site Scripting Vulnerabilities (1.5.0 - 3.8.7) CVE-2018-6378 CWE-79 CWE-79 High Joomla! Core Multiple Cross-Site Scripting Vulnerabilities (2.5.0 - 3.9.1) CVE-2019-6261 CVE-2019-6262 CVE-2019-6263 CVE-2019-6264 CWE-79 CWE-79 High Joomla! Core Multiple SQL Injection Vulnerabilities (2.5.0 - 3.9.13) CVE-2019-19846 CWE-89 CWE-89 High Joomla! Core Multiple Vulnerabilities (1.5.0 - 3.7.2) CVE-2017-7983 CVE-2017-7985 CVE-2017-7986 CWE-79 CWE-200 CWE-79 CWE-200 High Joomla! Core Multiple Vulnerabilities (1.5.0 - 3.8.11) CVE-2018-15880 CVE-2018-15882 CWE-79 CWE-434 CWE-79 CWE-434 High Joomla! Core Multiple Vulnerabilities (1.7.3 - 3.7.2) CVE-2017-9933 CVE-2017-9934 CWE-79 CWE-200 CWE-79 CWE-200 High Joomla! Core Multiple Vulnerabilities (2.5.0 - 3.8.12) CVE-2018-17858 CVE-2018-17859 CWE-264 CWE-352 CWE-264 CWE-352 High Joomla! Core Multiple Vulnerabilities (2.5.0 - 3.9.2) CVE-2019-7739 CVE-2019-7740 CVE-2019-7741 CVE-2019-7743 CVE-2019-7744 CWE-79 CWE-915 CWE-79 CWE-915 High Joomla! Core Multiple Vulnerabilities (2.5.0 - 3.10.6) CVE-2022-23795 CVE-2022-23798 CWE-287 CWE-601 CWE-287 CWE-601 High Joomla! Core PHP Object Injection (2.5.4 - 3.8.12) CVE-2018-17856 CWE-915 CWE-915 High Joomla! Core Privilege Escalation (1.6.0 - 3.6.4) CVE-2016-9838 CWE-264 CWE-264 High Joomla! Core Remote Code Execution (1.5.0 - 3.4.5) CVE-2015-8562 CWE-94 CWE-94 High Joomla! core remote file inclusion CVE-2014-7228.xml CWE-98 CWE-98 High Joomla! Core Security Bypass CVE-2017-11364 CWE-264 CWE-264 High Joomla! Core Security Bypass (1.5.0 - 3.8.12) CVE-2018-17855 CWE-264 CWE-264 High Joomla! Core Security Bypass (1.6.0 - 3.6.0) CWE-264 CWE-264 High Joomla! Core Security Bypass (1.6.0 - 3.6.5) CVE-2017-7988 CWE-264 CWE-264 High Joomla! Core Security Bypass (1.6.0 - 3.9.24) CVE-2021-26029 CWE-264 CWE-264 High Joomla! Core Security Bypass (1.6.2 - 3.9.10) CVE-2019-15028 CWE-264 CWE-264 High Joomla! Core Security Bypass (1.7.0 - 3.9.22) CVE-2020-35616 CWE-264 CWE-264 High Joomla! Core Security Bypass (2.5.0 - 3.8.7) CVE-2018-11323 CWE-264 CWE-264 High Joomla! Core Security Bypass (2.5.0 - 3.9.15) CVE-2020-10238 CWE-264 CWE-264 High Joomla! Core Security Bypass (2.5.0 - 3.9.16) CVE-2020-11890 CWE-264 CWE-264 High Joomla! Core Security Bypass (2.5.0 - 3.9.18) CVE-2020-13763 CWE-264 CWE-264 High Joomla! Core Security Bypass (2.5.0 - 3.9.19) CVE-2020-15699 CWE-264 CWE-264 High Joomla! Core Security Bypass (2.5.0 - 3.9.27) CVE-2021-26038 CWE-284 CWE-284 High Joomla! Core SQL Injection (1.7.0 - 3.9.15) CVE-2020-10243 CWE-89 CWE-89 High Joomla! JCE arbitrary file upload CWE-20 CWE-20 High Joomla! JomSocial remote code execution CWE-94 CWE-94 High Joomla! remote code execution vulnerability CVE-2015-8562 CWE-94 CWE-94 High Joomla! SQL injection vulnerability CVE-2015-7297 CVE-2015-7857 CVE-2015-7858 CWE-89 CWE-89 High Joomla! v3.2.2 SQL injection CWE-89 CWE-89 High Joomla 1.5 end of life CWE-1104 CWE-1104 High Joomla Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2005-4650) CVE-2005-4650 CWE-770 CWE-770 Medium Joomla Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2018-11324) CVE-2018-11324 CWE-362 CWE-362 Medium Joomla Configuration Vulnerability (CVE-2008-3228) CVE-2008-3228 High Joomla Credentials Management Errors Vulnerability (CVE-2016-9081) CVE-2016-9081 Critical Joomla Cross-Site Request Forgery (CSRF) (CVE-2021-26033) CVE-2021-26033 CWE-352 CWE-352 Medium Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2009-1280) CVE-2009-1280 CWE-352 CWE-352 Medium Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2015-5397) CVE-2015-5397 CWE-352 CWE-352 Medium Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2015-8563) CVE-2015-8563 CWE-352 CWE-352 Medium Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2018-17858) CVE-2018-17858 CWE-352 CWE-352 High Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-18650) CVE-2019-18650 CWE-352 CWE-352 High Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-8419) CVE-2020-8419 CWE-352 CWE-352 High Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-8420) CVE-2020-8420 CWE-352 CWE-352 High Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-10241) CVE-2020-10241 CWE-352 CWE-352 High Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-13760) CVE-2020-13760 CWE-352 CWE-352 High Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-15695) CVE-2020-15695 CWE-352 CWE-352 Medium Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-15700) CVE-2020-15700 CWE-352 CWE-352 Medium Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-35615) CVE-2020-35615 CWE-352 CWE-352 Medium Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-26034) CVE-2021-26034 CWE-352 CWE-352 Medium 1...56575859...309 57 / 309
