Joomla ! vulnerabilities
296 known vulnerabilities affecting joomla/joomla_!.
Total CVEs
296
CISA KEV
2
actively exploited
Public exploits
23
Exploited in wild
8
Severity breakdown
CRITICAL38HIGH74MEDIUM182LOW2
Vulnerabilities
Page 2 of 15
CVE-2018-8045P2HIGHCVSS 8.8≥ 3.5.0, ≤ 3.8.52018-03-15
CVE-2018-8045 [HIGH] CWE-89 CVE-2018-8045: In Joomla! 3.5.0 through 3.8.5, the lack of type casting of a variable in a SQL statement leads to a
In Joomla! 3.5.0 through 3.8.5, the lack of type casting of a variable in a SQL statement leads to a SQL injection vulnerability in the User Notes list view.
nvd
CVE-2013-1453P3HIGHCVSS 7.5PoCv2.5.0v2.5.1+10 more2013-02-13
CVE-2013-1453 [HIGH] CVE-2013-1453: plugins/system/highlight/highlight.php in Joomla! 3.0.x through 3.0.2 and 2.5.x through 2.5.8 allows
plugins/system/highlight/highlight.php in Joomla! 3.0.x through 3.0.2 and 2.5.x through 2.5.8 allows attackers to unserialize arbitrary PHP objects to obtain sensitive information, delete arbitrary directories, conduct SQL injection attacks, and possibly have other impacts via the highlight parameter. Note: it was originally reported that this issue only allowe
nvd
CVE-2010-1433P3CRITICALCVSS 9.8≥ 1.5.0, ≤ 1.5.15vJoomla core from 1.5.0 up to and including 1.5.152021-06-21
CVE-2010-1433 [CRITICAL] CWE-434 CVE-2010-1433: Joomla! Core is prone to a vulnerability that lets attackers upload arbitrary files because the appl
Joomla! Core is prone to a vulnerability that lets attackers upload arbitrary files because the application fails to properly verify user-supplied input. An attacker can exploit this vulnerability to upload arbitrary code and run it in the context of the webserver process. This may facilitate unauthorized access or privilege escalation; other attack
nvd
CVE-2026-35223P3CRITICALCVSS 9.8≥ 4.0.0, < 5.4.6≥ 6.0.0, < 6.1.12026-05-26
CVE-2026-35223 [CRITICAL] CWE-284 CVE-2026-35223: An improper access check allows unauthorized access to com_config webservice endpoints.
An improper access check allows unauthorized access to com_config webservice endpoints.
nvd
CVE-2018-6376P3CRITICALCVSS 9.8fixed in 3.8.42018-01-30
CVE-2018-6376 [CRITICAL] CWE-89 CVE-2018-6376: In Joomla! before 3.8.4, the lack of type casting of a variable in a SQL statement leads to a SQL in
In Joomla! before 3.8.4, the lack of type casting of a variable in a SQL statement leads to a SQL injection vulnerability in the Hathor postinstall message.
nvd
CVE-2017-16634P3CRITICALCVSS 9.8≥ 3.2.0, ≤ 3.8.12017-11-10
CVE-2017-16634 [CRITICAL] CWE-287 CVE-2017-16634: In Joomla! before 3.8.2, a bug allowed third parties to bypass a user's 2-factor authentication meth
In Joomla! before 3.8.2, a bug allowed third parties to bypass a user's 2-factor authentication method.
nvd
CVE-2021-23124P3MEDIUMCVSS 6.1≥ 3.9.0, ≤ 3.9.232021-01-12
CVE-2021-23124 [MEDIUM] CWE-79 CVE-2021-23124: An issue was discovered in Joomla! 3.9.0 through 3.9.23. The lack of escaping in mod_breadcrumbs ari
An issue was discovered in Joomla! 3.9.0 through 3.9.23. The lack of escaping in mod_breadcrumbs aria-label attribute allows XSS attacks.
nvd
CVE-2026-23899P3HIGHCVSS 8.8≥ 3.0.0, < 5.4.4≥ 6.0.0, < 6.0.42026-04-01
CVE-2026-23899 [HIGH] CWE-284 CVE-2026-23899: An improper access check allows unauthorized access to webservice endpoints.
An improper access check allows unauthorized access to webservice endpoints.
nvd
CVE-2021-26030P3MEDIUMCVSS 6.1≥ 3.0.0, ≤ 3.9.252021-04-14
CVE-2021-26030 [MEDIUM] CWE-79 CVE-2021-26030: An issue was discovered in Joomla! 3.0.0 through 3.9.25. Inadequate escaping allowed XSS attacks usi
An issue was discovered in Joomla! 3.0.0 through 3.9.25. Inadequate escaping allowed XSS attacks using the logo parameter of the default templates on error page
nvd
CVE-2020-10239P3HIGHCVSS 8.8≥ 3.7.0, < 3.9.162020-03-16
CVE-2020-10239 [HIGH] CWE-863 CVE-2020-10239: An issue was discovered in Joomla! before 3.9.16. Incorrect Access Control in the SQL fieldtype of c
An issue was discovered in Joomla! before 3.9.16. Incorrect Access Control in the SQL fieldtype of com_fields allows access for non-superadmin users.
nvd
CVE-2026-40383P3CRITICALCVSS 9.8≥ 3.2.1, < 5.4.6≥ 6.0.0, < 6.1.12026-05-26
CVE-2026-40383 [CRITICAL] CWE-22 CVE-2026-40383: An improper validation of user-supplied input leads to a local file inclusion vulnerability.
An improper validation of user-supplied input leads to a local file inclusion vulnerability.
nvd
CVE-2026-35221P3CRITICALCVSS 9.8≥ 3.0.0, < 5.4.6≥ 6.0.0, < 6.1.12026-05-26
CVE-2026-35221 [CRITICAL] CWE-89 CVE-2026-35221: Improperly built filter clauses lead to a SQL injection vulnerability in the search query for com_fi
Improperly built filter clauses lead to a SQL injection vulnerability in the search query for com_finder.
nvd
CVE-2026-48904P3CRITICALCVSS 9.8≥ 4.0.0, < 5.4.6≥ 6.0.0, < 6.1.12026-05-26
CVE-2026-48904 [CRITICAL] CWE-284 CVE-2026-48904: An improper access check allows privelege escalation through the com_users group editing webservice
An improper access check allows privelege escalation through the com_users group editing webservice endpoint.
nvd
CVE-2026-48898P3CRITICALCVSS 9.8≥ 4.0.0, < 5.4.6≥ 6.0.0, < 6.1.12026-05-26
CVE-2026-48898 [CRITICAL] CWE-284 CVE-2026-48898: An improper access check allows privilege escalation through the com_users batch task.
An improper access check allows privilege escalation through the com_users batch task.
nvd
CVE-2020-10243P3CRITICALCVSS 9.8≥ 1.7.0, < 3.9.162020-03-16
CVE-2020-10243 [CRITICAL] CWE-89 CVE-2020-10243: An issue was discovered in Joomla! before 3.9.16. The lack of type casting of a variable in a SQL st
An issue was discovered in Joomla! before 3.9.16. The lack of type casting of a variable in a SQL statement leads to a SQL injection vulnerability in the Featured Articles frontend menutype.
nvd
CVE-2010-1435P3CRITICALCVSS 9.8≥ 1.5.0, ≤ 1.5.15vJoomla core from 1.5.0 up to and including 1.5.152021-06-21
CVE-2010-1435 [CRITICAL] CWE-863 CVE-2010-1435: Joomla! Core is prone to a security bypass vulnerability. Exploiting this issue may allow attackers
Joomla! Core is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently retrieve password reset tokens from the database through an already existing SQL injection vector. Joomla! Core versions 1.5.x ranging from 1.5.0 and up to and including 1.5.15 are vulnerable.
nvd
CVE-2017-14596P3CRITICALCVSS 9.8v1.5.0v1.5.1+117 more2017-09-20
CVE-2017-14596 [CRITICAL] CWE-90 CVE-2017-14596: In Joomla! before 3.8.0, inadequate escaping in the LDAP authentication plugin can result in a discl
In Joomla! before 3.8.0, inadequate escaping in the LDAP authentication plugin can result in a disclosure of a username and password.
nvd
CVE-2026-48899P3CRITICALCVSS 9.8≥ 4.0.0, < 5.4.6≥ 6.0.0, < 6.1.12026-05-26
CVE-2026-48899 [CRITICAL] CWE-284 CVE-2026-48899: An improper access check allows privilege escalation through the com_users batch task.
An improper access check allows privilege escalation through the com_users batch task.
nvd
CVE-2026-21630P3HIGHCVSS 8.8≥ 3.0.0, < 5.4.4≥ 6.0.0, < 6.0.42026-04-01
CVE-2026-21630 [HIGH] CWE-89 CVE-2026-21630: Improperly built order clauses lead to a SQL injection vulnerability in the articles webservice endp
Improperly built order clauses lead to a SQL injection vulnerability in the articles webservice endpoint.
nvd
CVE-2026-35222P3CRITICALCVSS 9.8≥ 3.0.0, < 5.4.6≥ 6.0.0, < 6.1.12026-05-26
CVE-2026-35222 [CRITICAL] CWE-89 CVE-2026-35222: Improperly validated order clauses lead to a SQL injection vulnerability in com_tags.
Improperly validated order clauses lead to a SQL injection vulnerability in com_tags.
nvd