Where
-Infinity
0

Trending

Last week
Last month
Last year

Joomla Joomla CoreJoomla! Core - [20260511] - MFA Authentication Bypass

Risk 43
Severity
8.2
First published (updated )
CVE-2026-48896

Joomla Joomla CoreJoomla! Core - [20260509] - LFI in HTMLView layout parameter

Risk 66
Severity
7.5
First published (updated )
CVE-2026-40383

Joomla Joomla CoreJoomla! Core - [20260507] - Authenticated blind SQLi in com_tags

Risk 36
Severity
6.9
First published (updated )
CVE-2026-35222

Joomla Joomla CoreJoomla! Core - [20260510] - Path traversal in com_media webservice endpoint

Risk 32
Severity
5.9
First published (updated )
CVE-2026-40384

Joomla Joomla CoreJoomla! Core - [20260515] - Incorrect Access Control in sample data plugins

Risk 43
Severity
5.3
First published (updated )
CVE-2026-48899
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Joomla Joomla CoreJoomla! Core - [20260518] - Transport encryption downgrade for password and username reset links

Risk 33
First published (updated )
CVE-2026-48902

Joomla Joomla CoreJoomla! Core - [20260508] - Improper access check in com_config webservice endpoints

Risk 72
Severity
8.6
First published (updated )
CVE-2026-35223

Joomla Joomla CoreJoomla! Core - [20260501] - XSS in feed modules

Risk 49
Severity
6.9
First published (updated )
CVE-2026-25900

Joomla Joomla CoreJoomla! Core - [20260514] - Privilege escalation through com_users webservice endpoints

Risk 43
Severity
8.2
First published (updated )
CVE-2026-48904

Joomla Joomla CoreJoomla! Core - [20260504] - XSS in readmore links

Risk 49
Severity
6.9
First published (updated )
CVE-2026-30895
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Joomla Joomla CoreJoomla! Core - [20260513] - Privilege escalation through com_users batch task

Risk 43
Severity
8.2
First published (updated )
CVE-2026-48898

Joomla Joomla CoreJoomla! Core - [20260503] - XSS in com_contenthistory

Risk 49
Severity
6.9
First published (updated )
CVE-2026-30894

Joomla Joomla CoreJoomla! Core - [20260517] - Incorrect Cache Key Construction for InputFilter objects

Risk 37
First published (updated )
CVE-2026-48901

Joomla Joomla\!Joomla! Core - [20260302] - SQL injection in com_content articles webservice endpoint

Risk 79
Severity
6.9
First published (updated )
CVE-2026-21630

Joomla Joomla\!Joomla! Core - [20260301] - ACL hardening in com_ajax

Risk 51
Severity
6.3
First published (updated )
CVE-2026-21629
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Joomla Joomla\!Joomla! Core - [20260306] - Improper access check in webservice endpoints

Risk 79
Severity
8.6
First published (updated )
CVE-2026-23899

Joomla Joomla\!Joomla! Core - [20260303] - XSS vector in com_associations comparison view

Risk 54
Severity
5.9
First published (updated )
CVE-2026-21631

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203