Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Api Bfla Api Bola Api Broken Auth Api Broken Object Prop Auth Api Dos Api Improper Inventory Management Api Misconfiguration Api Ssrf Arbitrary File Creation Arbitrary File Read Authentication Bypass BOLA Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial Of Service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilities LLM Ldap Injection Llm Excessive Agency Llm Insecure Output Handling Llm Prompt Injection Llm Prompt Leakage Llm Sensitive Information Disclosure Malware Missing Update Privilege Escalation SSRF Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity Joomla! Core Arbitrary File Upload (2.5.0 - 3.8.7) CVE-2018-11322 CWE-434 CWE-434 High Joomla! Core Cross-Site Scripting (1.0.0 - 3.9.2) CVE-2019-7742 CWE-79 CWE-79 High Joomla! Core Cross-Site Scripting (1.5.0 - 3.7.3) CVE-2017-11612 CWE-79 CWE-79 High Joomla! Core Cross-Site Scripting (1.5.0 - 3.8.3) CVE-2018-6379 CWE-79 CWE-79 High Joomla! Core Cross-Site Scripting (1.6.0 - 3.6.0) CWE-79 CWE-79 High Joomla! Core Cross-Site Scripting (1.6.0 - 3.8.8) CVE-2018-12711 CWE-79 CWE-79 High Joomla! Core Cross-Site Scripting (1.7.0 - 3.9.5) CVE-2019-11809 CWE-79 CWE-79 High Joomla! Core Cross-Site Scripting (2.5.0 - 3.9.24) CVE-2021-23129 CWE-79 CWE-79 High Joomla! Core Denial of Service (2.5.0 - 3.9.27) CVE-2021-26036 CWE-400 CWE-400 High Joomla! Core Directory Traversal (1.5.0 - 3.9.4) CVE-2019-10945 CWE-22 CWE-22 High Joomla! Core Directory Traversal (2.5.0 - 3.9.20) CVE-2020-24597 CWE-22 CWE-22 High Joomla! Core Directory Traversal (2.5.0 - 3.9.22) CVE-2020-35612 CWE-22 CWE-22 High Joomla! Core improper access check in webservice endpoints CVE-2023-23752 CWE-200 CWE-200 Medium Joomla! Core Information Disclosure (1.5.0 - 3.7.5) CVE-2017-14596 CWE-200 CWE-200 High Joomla! Core Information Disclosure (1.5.0 - 3.8.1) CVE-2017-14596 CWE-200 CWE-200 High Joomla! Core Information Disclosure (2.5.0 - 3.9.22) CVE-2020-35611 CWE-200 CWE-200 High Joomla! Core Local File Inclusion (2.5.0 - 3.8.8) CVE-2018-12712 CWE-22 CWE-22 High Joomla! Core Multiple Cross-Site Scripting Vulnerabilities (1.5.0 - 3.8.7) CVE-2018-6378 CWE-79 CWE-79 High Joomla! Core Multiple Cross-Site Scripting Vulnerabilities (2.5.0 - 3.9.1) CVE-2019-6261 CVE-2019-6262 CVE-2019-6263 CVE-2019-6264 CWE-79 CWE-79 High Joomla! Core Multiple SQL Injection Vulnerabilities (2.5.0 - 3.9.13) CVE-2019-19846 CWE-89 CWE-89 High Joomla! Core Multiple Vulnerabilities (1.5.0 - 3.7.2) CVE-2017-7983 CVE-2017-7985 CVE-2017-7986 CWE-79 CWE-200 CWE-79 CWE-200 High Joomla! Core Multiple Vulnerabilities (1.5.0 - 3.8.11) CVE-2018-15880 CVE-2018-15882 CWE-79 CWE-434 CWE-79 CWE-434 High Joomla! Core Multiple Vulnerabilities (1.7.3 - 3.7.2) CVE-2017-9933 CVE-2017-9934 CWE-79 CWE-200 CWE-79 CWE-200 High Joomla! Core Multiple Vulnerabilities (2.5.0 - 3.8.12) CVE-2018-17858 CVE-2018-17859 CWE-264 CWE-352 CWE-264 CWE-352 High Joomla! Core Multiple Vulnerabilities (2.5.0 - 3.9.2) CVE-2019-7739 CVE-2019-7740 CVE-2019-7741 CVE-2019-7743 CVE-2019-7744 CWE-79 CWE-915 CWE-79 CWE-915 High Joomla! Core Multiple Vulnerabilities (2.5.0 - 3.10.6) CVE-2022-23795 CVE-2022-23798 CWE-287 CWE-601 CWE-287 CWE-601 High Joomla! Core PHP Object Injection (2.5.4 - 3.8.12) CVE-2018-17856 CWE-915 CWE-915 High Joomla! Core Privilege Escalation (1.6.0 - 3.6.4) CVE-2016-9838 CWE-264 CWE-264 High Joomla! Core Remote Code Execution (1.5.0 - 3.4.5) CVE-2015-8562 CWE-94 CWE-94 High Joomla! core remote file inclusion CVE-2014-7228.xml CWE-98 CWE-98 High Joomla! Core Security Bypass CVE-2017-11364 High Joomla! Core Security Bypass (1.5.0 - 3.8.12) CVE-2018-17855 CWE-264 CWE-264 High Joomla! Core Security Bypass (1.6.0 - 3.6.0) CWE-264 CWE-264 High Joomla! Core Security Bypass (1.6.0 - 3.6.5) CVE-2017-7988 CWE-264 CWE-264 High Joomla! Core Security Bypass (1.6.0 - 3.9.24) CVE-2021-26029 CWE-264 CWE-264 High Joomla! Core Security Bypass (1.6.2 - 3.9.10) CVE-2019-15028 CWE-264 CWE-264 High Joomla! Core Security Bypass (1.7.0 - 3.9.22) CVE-2020-35616 CWE-264 CWE-264 High Joomla! Core Security Bypass (2.5.0 - 3.8.7) CVE-2018-11323 CWE-264 CWE-264 High Joomla! Core Security Bypass (2.5.0 - 3.9.15) CVE-2020-10238 CWE-264 CWE-264 High Joomla! Core Security Bypass (2.5.0 - 3.9.16) CVE-2020-11890 CWE-264 CWE-264 High Joomla! Core Security Bypass (2.5.0 - 3.9.18) CVE-2020-13763 CWE-264 CWE-264 High Joomla! Core Security Bypass (2.5.0 - 3.9.19) CVE-2020-15699 CWE-264 CWE-264 High Joomla! Core Security Bypass (2.5.0 - 3.9.27) CVE-2021-26038 CWE-284 CWE-284 High Joomla! Core SQL Injection (1.7.0 - 3.9.15) CVE-2020-10243 CWE-89 CWE-89 High Joomla! JCE arbitrary file upload CWE-20 CWE-20 High Joomla! JomSocial remote code execution CWE-94 CWE-94 High Joomla! remote code execution vulnerability CVE-2015-8562 CWE-94 CWE-94 High Joomla! SQL injection vulnerability CVE-2015-7297 CVE-2015-7857 CVE-2015-7858 CWE-89 CWE-89 High Joomla! v3.2.2 SQL injection CWE-89 CWE-89 High Joomla 1.5 end of life CWE-1104 CWE-1104 High Joomla Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2005-4650) CVE-2005-4650 CWE-770 CWE-770 Medium Joomla Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2018-11324) CVE-2018-11324 CWE-362 CWE-362 Medium Joomla Configuration Vulnerability (CVE-2008-3228) CVE-2008-3228 High Joomla Credentials Management Errors Vulnerability (CVE-2016-9081) CVE-2016-9081 Critical Joomla Cross-Site Request Forgery (CSRF) (CVE-2021-26033) CVE-2021-26033 CWE-352 CWE-352 Medium Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2009-1280) CVE-2009-1280 CWE-352 CWE-352 Medium Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2015-5397) CVE-2015-5397 CWE-352 CWE-352 Medium Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2015-8563) CVE-2015-8563 CWE-352 CWE-352 Medium Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2018-17858) CVE-2018-17858 CWE-352 CWE-352 High Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-18650) CVE-2019-18650 CWE-352 CWE-352 High Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-8419) CVE-2020-8419 CWE-352 CWE-352 High Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-8420) CVE-2020-8420 CWE-352 CWE-352 High Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-10241) CVE-2020-10241 CWE-352 CWE-352 High Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-13760) CVE-2020-13760 CWE-352 CWE-352 High Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-15695) CVE-2020-15695 CWE-352 CWE-352 Medium Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-15700) CVE-2020-15700 CWE-352 CWE-352 Medium Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-35615) CVE-2020-35615 CWE-352 CWE-352 Medium Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-26034) CVE-2021-26034 CWE-352 CWE-352 Medium Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2023-23750) CVE-2023-23750 CWE-352 CWE-352 Medium Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2026-35220) CVE-2026-35220 CWE-352 CWE-352 Medium Joomla Cryptographic Issues Vulnerability (CVE-2008-4122) CVE-2008-4122 Medium Joomla Cryptographic Issues Vulnerability (CVE-2011-4321) CVE-2011-4321 Medium Joomla Cryptographic Issues Vulnerability (CVE-2014-7228) CVE-2014-7228 High Joomla CVE-2006-4469 Vulnerability (CVE-2006-4469) CVE-2006-4469 High Joomla CVE-2006-4470 Vulnerability (CVE-2006-4470) CVE-2006-4470 High 1...62636465...327 63 / 327
