| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-22210 | Extension - hikashop.com - SQL injection in Hikashop component version 3.3.0 - 5.1.4 for Joomla | hikashop.com | Hikashop component for Joomla | 高危 | - | 2025-02-25 05:16:48 | Deep Dive |
| CVE-2025-22207 | [20250201] - Core - SQL injection vulnerability in Scheduled Tasks component | Joomla! Project | Joomla! CMS | 中危 | - | 2025-02-18 16:03:30 | Deep Dive |
| CVE-2025-22208 | Extension - joomsky.com - SQL injection in JS jobs component version 1.1.5 - 1.4.3 for Joomla | joomsky.com | JS Jobs component for Joomla | 中危 | - | 2025-02-15 08:11:00 | Deep Dive |
| CVE-2025-22209 | Extension - joomsky.com - SQL injection in JS jobs component version 1.1.5 - 1.4.3 for Joomla | joomsky.com | JS Jobs component for Joomla | 中危 | - | 2025-02-15 08:10:59 | Deep Dive |
| CVE-2025-22206 | Extension - joomsky.com - SQL injection in JS jobs component version 1.1.5 - 1.4.2 for Joomla | joomsky.com | JS Jobs component for Joomla | 中危 | - | 2025-02-04 14:20:48 | Deep Dive |
| CVE-2025-22205 | Extension - admiror-design-studio.com - Path traversal in the Admiror Gallery 4.x component for Joomla | www.admiror-design-studio.com | Admiror Gallery component for Joomla | 中危 | - | 2025-02-04 07:21:28 | Deep Dive |
| CVE-2025-22204 | Extension - regularlabs.com - Remote code execution vulnerability in the Sourcerer extensions < 12.0.0 for Joomla | regularlabs.com | Sourcerer for Joomla | 超危 | - | 2025-02-04 07:20:46 | Deep Dive |
| CVE-2024-40749 | [20250103] - Core - Read ACL violation in multiple core views | Joomla! Project | Joomla! CMS | 高危 | - | 2025-01-07 16:22:13 | Deep Dive |
| CVE-2024-40747 | [20250101] - Core - XSS vectors in module chromes | Joomla! Project | Joomla! CMS | 中危 | - | 2025-01-07 16:22:03 | Deep Dive |
| CVE-2024-40748 | [20250102] - Core - XSS vector in the id attribute of menu lists | Joomla! Project | Joomla! CMS | 高危 | - | 2025-01-07 16:22:01 | Deep Dive |
| CVE-2024-40745 | Extension - tassos.gr - Reflected Cross site scripting vulnerability in Convert Forms component for Joomla < 4.4.8 | tassos.gr | Convert Forms component for Joomla | 中危 | - | 2024-12-04 15:02:06 | Deep Dive |
| CVE-2024-40744 | Extension - tassos.gr - Unrestricted file upload in Convert Forms component for Joomla < 4.4.8 | tassos.gr | Convert Forms component for Joomla | 中危 | - | 2024-12-04 15:01:51 | Deep Dive |
| CVE-2024-40746 | Extension - hikashop.com - Stored cross site scripting vulnerability in Hikashop component for Joomla < 5.1.1 | hikashop.com | HikaShop component for Joomla | - | - | 2024-10-21 16:16:33 | Deep Dive |
| CVE-2024-27185 | [20240802] - Core - Cache Poisoning in Pagination | Joomla! Project | Joomla! CMS | - | - | 2024-08-20 16:03:58 | Deep Dive |
| CVE-2024-27186 | [20240803] - Core - XSS in HTML Mail Templates | Joomla! Project | Joomla! CMS | - | - | 2024-08-20 16:03:57 | Deep Dive |
| CVE-2024-27184 | [20240801] - Core - Inadequate validation of internal URLs | Joomla! Project | Joomla! CMS | - | - | 2024-08-20 16:03:52 | Deep Dive |
| CVE-2024-40743 | [20240805] - Core - XSS vectors in Outputfilter::strip* methods | Joomla! Project | Joomla! CMS | - | - | 2024-08-20 16:03:45 | Deep Dive |
| CVE-2024-27187 | [20240804] - Core - Improper ACL for backend profile view | Joomla! Project | Joomla! CMS | - | - | 2024-08-20 16:03:44 | Deep Dive |
| CVE-2024-27183 | Extension - dj-extensions.com - XSS vulnerability in DJ-HelpfulArticles component for Joomla 1.0.0-1.1.0 | dj-extensions.com | DJ-HelpfulArticles for Joomla | - | - | 2024-07-09 18:05:22 | Deep Dive |
| CVE-2024-21729 | [20240701] - Core - XSS in accessible media selection field | Joomla! Project | Joomla! CMS | - | - | 2024-07-09 16:15:51 | Deep Dive |