Where
AND
-Infinity
0

Trending

Last week
Last month
Last year

Joomla Joomla\!Joomla! Core - [20260302] - SQL injection in com_content articles webservice endpoint

Risk 79
Severity
6.9
First published (updated )
CVE-2026-21630

Joomla Joomla\!Joomla! Core - [20260301] - ACL hardening in com_ajax

Risk 51
Severity
6.3
First published (updated )
CVE-2026-21629

Joomla Joomla\!Joomla! Core - [20260303] - XSS vector in com_associations comparison view

Risk 54
Severity
5.9
First published (updated )
CVE-2026-21631

Joomla Joomla\!Joomla! Core - [20260304] - XSS vectors in various article title outputs

Risk 54
Severity
5.9
First published (updated )
CVE-2026-21632

Joomla Joomla\!Joomla! Core - [20260101] - Inadequate content filtering for data URLs

Risk 38
Severity
6.1
First published (updated )
CVE-2025-63082
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Joomla Joomla\!Joomla! Core - [20260102] - XSS vector in the pagebreak plugin

Risk 38
Severity
6.1
First published (updated )
CVE-2025-63083

Joomla Joomla\![20230201] - Core - Improper access check in webservice endpoints

Risk 65
Severity
5.3
Exploited
First published (updated )
CVE-2023-23752

Joomla Joomla\![20220801] - Core - Multiple Full Path Disclosures because of missing '_JEXEC or die check'

Risk 27
Severity
5.3
First published (updated )
CVE-2022-27911

Joomla Joomla\![20220309] - Core - XSS attack vector through SVG

Risk 38
Severity
6.1
First published (updated )
CVE-2022-23801

Joomla Joomla\![20220306] - Core - Inadequate validation of internal URLs

Risk 38
Severity
6.1
First published (updated )
CVE-2022-23798
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Joomla Joomla\![20220304] - Core - Missing input validation within com_fields class inputs

Risk 38
Severity
6.1
First published (updated )
CVE-2022-23796

composer/joomla/filter[20220308] - Core - Inadequate content filtering within the filter code

Risk 39
Severity
6.1
First published (updated )
CVE-2022-23800

composer/joomla/filesystem[20220302] - Core - Path Disclosure within filesystem error messages

Risk 28
Severity
5.3
First published (updated )
CVE-2022-23794

Joomla Joomla\![20210705] - Core - XSS in com_media imagelist

Risk 38
Severity
6.1
First published (updated )
CVE-2021-26039

Joomla Joomla\![20210703] - Core - Lack of enforced session termination

Risk 27
Severity
5.3
First published (updated )
CVE-2021-26037
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Joomla Joomla\![20210701] - Core - XSS in JForm Rules field

Risk 38
Severity
6.1
First published (updated )
CVE-2021-26035

Joomla Joomla\![20210503] - Core - CSRF in data download endpoints

Risk 37
Severity
6.5
First published (updated )
CVE-2021-26034

Joomla Joomla\![20210502] - Core - CSRF in AJAX reordering endpoint

Risk 37
Severity
6.5
First published (updated )
CVE-2021-26033

Joomla Joomla\![20210501] - Core - Adding HTML to the executable block list of MediaHelper::canUpload

Risk 38
Severity
6.1
First published (updated )
CVE-2021-26032

Joomla Joomla\![20210402] - Core - Inadequate filters on module layout settings

Risk 27
Severity
5.3
First published (updated )
CVE-2021-26031
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Joomla Joomla\![20210401] - Core - Escape xss in logo parameter error pages

Risk 38
Severity
6.1
First published (updated )
CVE-2021-26030

composer/joomla/archive[20210308] - Core - Path Traversal within joomla/archive zip class

Risk 31
Severity
5.5
First published (updated )
CVE-2021-26028

Joomla Joomla\![20210307] - Core - ACL violation within com_content frontend editing

Risk 27
Severity
5.3
First published (updated )
CVE-2021-26027

Joomla Joomla\![20210309] - Core - Inadequate filtering of form contents could allow to overwrite the author field

Risk 27
Severity
5.3
First published (updated )
CVE-2021-26029

Joomla Joomla\![20210303] - Core - XSS within alert messages showed to users

Risk 38
Severity
6.1
First published (updated )
CVE-2021-23129
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Joomla Joomla\![20210304] - Core - XSS within the feed parser library

Risk 38
Severity
6.1
First published (updated )
CVE-2021-23130

Joomla Joomla\![20210301] - Core - Insecure randomness within 2FA secret generation

Risk 27
Severity
5.3
First published (updated )
CVE-2021-23126

Joomla Joomla\![20210103] - Core - XSS in com_tags image parameters

Risk 38
Severity
6.1
First published (updated )
CVE-2021-23125

Joomla Joomla\![20210102] - Core - XSS in mod_breadcrumbs aria-label attribute

Risk 38
Severity
6.1
First published (updated )
CVE-2021-23124

Joomla Joomla\![20210101] - Core - com_modules exposes module names

Risk 27
Severity
5.3
First published (updated )
CVE-2021-23123
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203