Project: Joomla!
SubProject: CMS
Impact: Low
Severity: Low
Versions: 3.0.0-3.9.19
Exploit type: Information Disclosure
Reported Date: 2020-Jun-17
Fixed Date: 2020-July-14
CVE Number: CVE-2020-15698
Description
Inadequate filtering in the system infor…
Project: Joomla!
SubProject: CMS
Impact: Low
Severity: Low
Versions: 3.0.0-3.9.19
Exploit type: XSS
Reported Date: 2020-Jun-08
Fixed Date: 2020-July-14
CVE Number: CVE-2020-15696
Description
Lack of input filtering and escaping allows XSS attacks in …
Project: Joomla!
SubProject: CMS
Impact: Low
Severity: Low
Versions: 3.0.0-3.9.19
Exploit type: Incorrect Access Control
Reported Date: 2020-Jun-02
Fixed Date: 2020-July-14
CVE Number: CVE-2020-15697
Description
Internal read-only fields in the User …
Project: Joomla!
SubProject: CMS
Impact: Low
Severity: Low
Versions: 3.9.0-3.9.19
Exploit type: CSRF
Reported Date: 2020-May-07
Fixed Date: 2020-July-14
CVE Number: CVE-2020-15695
Description
A missing token check in the remove request section of com…
Project: Joomla!
SubProject: CMS
Impact: Moderate
Severity: Low
Versions: 2.5.0-3.9.19
Exploit type: Incorrect Access Control
Reported Date: 2020-April-04
Fixed Date: 2020-July-14
CVE Number: CVE-2020-15699
Description
Missing validation checks at th…
Project: Joomla!
SubProject: CMS
Impact: Low
Severity: Low
Versions: 3.7.0-3.9.19
Exploit type: CSRF
Reported Date: 2020-May-07
Fixed Date: 2020-July-14
CVE Number: CVE-2020-XXXXX
Description
A missing token check in the ajax_install endpoint com_ins…
Windscribe 1.83 – ‘WindscribeService’ Unquoted Service Path
KiteService 1.2020.618.0 – Unquoted Service Path
OpenEMR 5.0.1 – ‘controller’ Remote Code Execution