Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Api Bfla Api Bola Api Broken Auth Api Broken Object Prop Auth Api Dos Api Improper Inventory Management Api Misconfiguration Api Ssrf Arbitrary File Creation Arbitrary File Read Authentication Bypass BOLA Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial Of Service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilities LLM Ldap Injection Llm Excessive Agency Llm Insecure Output Handling Llm Prompt Injection Llm Prompt Leakage Llm Sensitive Information Disclosure Malware Missing Update Privilege Escalation SSRF Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-6377) CVE-2018-6377 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-6378) CVE-2018-6378 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-6379) CVE-2018-6379 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-6380) CVE-2018-6380 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-11326) CVE-2018-11326 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-11328) CVE-2018-11328 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-12711) CVE-2018-12711 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-15880) CVE-2018-15880 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-6261) CVE-2019-6261 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-6262) CVE-2019-6262 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-6263) CVE-2019-6263 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-6264) CVE-2019-6264 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7740) CVE-2019-7740 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7741) CVE-2019-7741 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7742) CVE-2019-7742 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7744) CVE-2019-7744 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-9711) CVE-2019-9711 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-9712) CVE-2019-9712 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-9714) CVE-2019-9714 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-11809) CVE-2019-11809 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-12766) CVE-2019-12766 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-16725) CVE-2019-16725 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-8421) CVE-2020-8421 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-10242) CVE-2020-10242 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-13761) CVE-2020-13761 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-13762) CVE-2020-13762 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-15696) CVE-2020-15696 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-24599) CVE-2020-24599 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-23124) CVE-2021-23124 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-23125) CVE-2021-23125 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-23129) CVE-2021-23129 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-23130) CVE-2021-23130 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-26030) CVE-2021-26030 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-26032) CVE-2021-26032 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-26035) CVE-2021-26035 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-26039) CVE-2021-26039 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-23796) CVE-2022-23796 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-23800) CVE-2022-23800 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-23801) CVE-2022-23801 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-27913) CVE-2022-27913 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-27914) CVE-2022-27914 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-21724) CVE-2024-21724 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-21725) CVE-2024-21725 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-21726) CVE-2024-21726 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-21729) CVE-2024-21729 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-21730) CVE-2024-21730 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-21731) CVE-2024-21731 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-26278) CVE-2024-26278 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-26279) CVE-2024-26279 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-27186) CVE-2024-27186 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-40743) CVE-2024-40743 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-40747) CVE-2024-40747 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-40748) CVE-2024-40748 CWE-707 CWE-707 High Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2025-63082) CVE-2025-63082 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2025-63083) CVE-2025-63083 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2026-21631) CVE-2026-21631 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2026-21632) CVE-2026-21632 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2026-25900) CVE-2026-25900 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2026-25901) CVE-2026-25901 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2026-30894) CVE-2026-30894 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2026-30895) CVE-2026-30895 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2026-48903) CVE-2026-48903 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2026-48905) CVE-2026-48905 CWE-707 CWE-707 Medium Joomla Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2007-4190) CVE-2007-4190 CWE-138 CWE-138 Medium Joomla Improper Neutralization of Special Elements used in a Command ('Command Injection') Vulnerability (CVE-2016-10045) CVE-2016-10045 CWE-138 CWE-138 Critical Joomla Improper Neutralization of Special Elements used in an LDAP Query ('LDAP Injection') Vulnerability (CVE-2017-14596) CVE-2017-14596 CWE-138 CWE-138 Critical Joomla Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2006-1049) CVE-2006-1049 CWE-138 CWE-138 High Joomla Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-0795) CVE-2008-0795 CWE-138 CWE-138 High Joomla Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-1935) CVE-2008-1935 CWE-138 CWE-138 High Joomla Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-6852) CVE-2008-6852 CWE-138 CWE-138 High Joomla Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2009-1499) CVE-2009-1499 CWE-138 CWE-138 High Joomla Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2010-2679) CVE-2010-2679 CWE-138 CWE-138 High Joomla Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2010-4166) CVE-2010-4166 CWE-138 CWE-138 High Joomla Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2010-4696) CVE-2010-4696 CWE-138 CWE-138 High Joomla Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2011-1151) CVE-2011-1151 CWE-138 CWE-138 Critical 1...65666768...327 66 / 327
