Shodan
Vulnerabilities
Vulnerable Software
Joomla:  >> Joomla!  >> 4.0.1  Security Vulnerabilities
CVE-2026-40384
An improper validation of the search parameter of the com_media files API endpoint leads to a path traversal vulnerability.
CVSS Score
5.9
EPSS Score
0.0
Published
2026-05-26
CVE-2026-35223
An improper access check allows unauthorized access to com_config webservice endpoints.
CVSS Score
8.6
EPSS Score
0.0
Published
2026-05-26
CVE-2026-35221
Improperly built filter clauses lead to a SQL injection vulnerability in the search query for com_finder.
CVSS Score
6.9
EPSS Score
0.0
Published
2026-05-26
CVE-2026-35222
Improperly validated order clauses lead to a SQL injection vulnerability in com_tags.
CVSS Score
6.9
EPSS Score
0.0
Published
2026-05-26
CVE-2026-30895
Lack of output escaping leads to a XSS vector in the readmore links for com_content.
CVSS Score
6.9
EPSS Score
0.0
Published
2026-05-26
CVE-2026-25900
Lack of output escaping leads to a XSS vector in the feed modules.
CVSS Score
6.9
EPSS Score
0.0
Published
2026-05-26
CVE-2026-25901
Lack of output escaping leads to a XSS vector in the multilingual associations component.
CVSS Score
6.9
EPSS Score
0.0
Published
2026-05-26
CVE-2026-30894
Lack of output escaping leads to a XSS vector in the content history component.
CVSS Score
6.9
EPSS Score
0.0
Published
2026-05-26
CVE-2026-21631
Lack of output escaping leads to a XSS vector in the multilingual associations component.
CVSS Score
5.9
EPSS Score
0.0
Published
2026-04-01
CVE-2026-21632
Lack of output escaping for article titles leads to XSS vectors in various locations.
CVSS Score
5.9
EPSS Score
0.0
Published
2026-04-01


Products
Pricing
Contact Us

Shodan ® - All rights reserved