Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Api Bfla Api Bola Api Broken Auth Api Broken Object Prop Auth Api Dos Api Improper Inventory Management Api Misconfiguration Api Ssrf Arbitrary File Creation Arbitrary File Read Authentication Bypass BOLA Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial Of Service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilities LLM Ldap Injection Llm Excessive Agency Llm Insecure Output Handling Llm Prompt Injection Llm Prompt Leakage Llm Sensitive Information Disclosure Malware Missing Update Privilege Escalation SSRF Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity Joomla Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2008-5671) CVE-2008-5671 CWE-94 CWE-94 High Joomla Improper Input Validation Vulnerability (CVE-2006-1957) CVE-2006-1957 CWE-20 CWE-20 Medium Joomla Improper Input Validation Vulnerability (CVE-2006-4466) CVE-2006-4466 CWE-20 CWE-20 Medium Joomla Improper Input Validation Vulnerability (CVE-2006-4468) CVE-2006-4468 CWE-20 CWE-20 Medium Joomla Improper Input Validation Vulnerability (CVE-2008-4103) CVE-2008-4103 CWE-20 CWE-20 Medium Joomla Improper Input Validation Vulnerability (CVE-2008-4105) CVE-2008-4105 CWE-20 CWE-20 High Joomla Improper Input Validation Vulnerability (CVE-2011-2892) CVE-2011-2892 CWE-20 CWE-20 Medium Joomla Improper Input Validation Vulnerability (CVE-2011-4911) CVE-2011-4911 CWE-20 CWE-20 Medium Joomla Improper Input Validation Vulnerability (CVE-2013-3242) CVE-2013-3242 CWE-20 CWE-20 Medium Joomla Improper Input Validation Vulnerability (CVE-2013-5576) CVE-2013-5576 CWE-20 CWE-20 Medium Joomla Improper Input Validation Vulnerability (CVE-2015-8562) CVE-2015-8562 CWE-20 CWE-20 High Joomla Improper Input Validation Vulnerability (CVE-2015-8564) CVE-2015-8564 CWE-20 CWE-20 High Joomla Improper Input Validation Vulnerability (CVE-2015-8565) CVE-2015-8565 CWE-20 CWE-20 High Joomla Improper Input Validation Vulnerability (CVE-2016-8869) CVE-2016-8869 CWE-20 CWE-20 Critical Joomla Improper Input Validation Vulnerability (CVE-2016-8870) CVE-2016-8870 CWE-20 CWE-20 High Joomla Improper Input Validation Vulnerability (CVE-2018-11321) CVE-2018-11321 CWE-20 CWE-20 Medium Joomla Improper Input Validation Vulnerability (CVE-2018-12712) CVE-2018-12712 CWE-20 CWE-20 High Joomla Improper Input Validation Vulnerability (CVE-2020-10240) CVE-2020-10240 CWE-20 CWE-20 Medium Joomla Improper Input Validation Vulnerability (CVE-2020-11890) CVE-2020-11890 CWE-20 CWE-20 Medium Joomla Improper Input Validation Vulnerability (CVE-2020-35616) CVE-2020-35616 CWE-20 CWE-20 High Joomla Improper Input Validation Vulnerability (CVE-2021-23131) CVE-2021-23131 CWE-20 CWE-20 High Joomla Improper Input Validation Vulnerability (CVE-2021-26029) CVE-2021-26029 CWE-20 CWE-20 Medium Joomla Improper Input Validation Vulnerability (CVE-2021-26036) CVE-2021-26036 CWE-20 CWE-20 High Joomla Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2019-10945) CVE-2019-10945 CWE-22 CWE-22 Critical Joomla Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2019-19845) CVE-2019-19845 CWE-22 CWE-22 Medium Joomla Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2020-35612) CVE-2020-35612 CWE-22 CWE-22 High Joomla Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-26028) CVE-2021-26028 CWE-22 CWE-22 Medium Joomla Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2022-23793) CVE-2022-23793 CWE-22 CWE-22 High Joomla Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2026-40383) CVE-2026-40383 CWE-22 CWE-22 Critical Joomla Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2026-40384) CVE-2026-40384 CWE-22 CWE-22 High Joomla Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2008-3227) CVE-2008-3227 CWE-59 CWE-59 High Joomla Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2008-4104) CVE-2008-4104 CWE-59 CWE-59 Medium Joomla Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') Vulnerability (CVE-2019-11358) CVE-2019-11358 CWE-1321 CWE-1321 Medium Joomla Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') Vulnerability (CVE-2016-10033) CVE-2016-10033 CWE-707 CWE-707 Critical Joomla Improper Neutralization of Formula Elements in a CSV File Vulnerability (CVE-2019-12765) CVE-2019-12765 CWE-1236 CWE-1236 Critical Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2006-6832) CVE-2006-6832 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-4189) CVE-2007-4189 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-5577) CVE-2007-5577 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6299) CVE-2008-6299 CWE-707 CWE-707 Low Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-1279) CVE-2009-1279 CWE-707 CWE-707 Low Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-1938) CVE-2009-1938 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-1939) CVE-2009-1939 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-1940) CVE-2009-1940 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-1649) CVE-2010-1649 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-2535) CVE-2010-2535 CWE-707 CWE-707 Low Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-3712) CVE-2010-3712 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-2509) CVE-2011-2509 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-2710) CVE-2011-2710 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-3595) CVE-2011-3595 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-4332) CVE-2011-4332 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-4909) CVE-2011-4909 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-4910) CVE-2011-4910 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-0820) CVE-2012-0820 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-0822) CVE-2012-0822 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-1117) CVE-2012-1117 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-1612) CVE-2012-1612 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-2413) CVE-2012-2413 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-3828) CVE-2012-3828 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-4531) CVE-2012-4531 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-4532) CVE-2012-4532 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-5455) CVE-2012-5455 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-3058) CVE-2013-3058 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-3059) CVE-2013-3059 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-3267) CVE-2013-3267 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-5583) CVE-2013-5583 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-6631) CVE-2014-6631 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-7982) CVE-2014-7982 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-7983) CVE-2014-7983 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-6939) CVE-2015-6939 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-7984) CVE-2017-7984 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-7985) CVE-2017-7985 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-7986) CVE-2017-7986 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-7987) CVE-2017-7987 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9934) CVE-2017-9934 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-11612) CVE-2017-11612 CWE-707 CWE-707 Medium 1...64656667...327 65 / 327
