Shodan
Vulnerabilities
Vulnerable Software
Joomla:  >> Joomla!  >> 1.5.17  Security Vulnerabilities
CVE-2025-25226
Improper handling of identifiers lead to a SQL injection vulnerability in the quoteNameStr method of the database package. Please note: the affected method is a protected method. It has no usages in the original packages in neither the 2.x nor 3.x branch and therefore the vulnerability in question can not be exploited when using the original database class. However, classes extending the affected class might be affected, if the vulnerable method is used.
CVSS Score
9.8
EPSS Score
0.0
Published
2025-04-08
CVE-2024-21723
Inadequate parsing of URLs could result into an open redirect.
CVSS Score
4.3
EPSS Score
0.0
Published
2024-02-29
CVE-2011-4937
Joomla! 1.7.1 has core information disclosure due to inadequate error checking.
CVSS Score
7.5
EPSS Score
0.0
Published
2020-02-04
CVE-2011-3629
Joomla! core 1.7.1 allows information disclosure due to weak encryption
CVSS Score
7.5
EPSS Score
0.0
Published
2020-02-04
CVE-2011-3595
Multiple Cross-site Scripting (XSS) vulnerabilities exist in Joomla! through 1.7.0 in index.php in the search word, extension, asset, and author parameters.
CVSS Score
5.4
EPSS Score
0.0
Published
2020-01-22
CVE-2012-1562
Joomla! core before 2.5.3 allows unauthorized password change.
CVSS Score
7.5
EPSS Score
0.0
Published
2020-01-15
CVE-2012-1563
Joomla! before 2.5.3 allows Admin Account Creation.
CVSS Score
7.5
EPSS Score
0.005
Published
2020-01-15
CVE-2019-10945
An issue was discovered in Joomla! before 3.9.5. The Media Manager component does not properly sanitize the folder parameter, allowing attackers to act outside the media manager root directory.
CVSS Score
9.8
EPSS Score
0.785
Published
2019-04-10
CVE-2019-7742
An issue was discovered in Joomla! before 3.9.3. A combination of specific web server configurations, in connection with specific file types and browser-side MIME-type sniffing, causes an XSS attack vector.
CVSS Score
6.1
EPSS Score
0.001
Published
2019-02-12
CVE-2018-17855
An issue was discovered in Joomla! before 3.8.13. If an attacker gets access to the mail account of an user who can approve admin verifications in the registration process, he can activate himself.
CVSS Score
8.8
EPSS Score
0.005
Published
2018-10-09


Products
Pricing
Contact Us

Shodan ® - All rights reserved