joomla security advisories

2 threat alerts tracking vulnerabilities and security advisories that affect joomla products.

Vulnios monitors joomla CVE feeds, vendor advisories, CISA KEV listings, and exploit-prediction data continuously. Each alert below is enriched with severity, exploitation status, affected products, and a remediation path. Use this page to scan recent joomla security news in one place, or click into an individual alert for full detail.

Critical Vulnerability: CVE-2017-8917 — joomla — joomla\!
SQL injection vulnerability in Joomla! 3.7.x before 3.7.1 allows attackers to execute arbitrary SQL commands via unspecified vectors.
criticalCVE-2017-8917
Critical Vulnerability: CVE-2016-9081 — joomla — joomla\!
Joomla! 3.4.4 through 3.6.3 allows attackers to reset username, password, and user group assignments and possibly perform other user account modifications via unspecified vectors.
criticalCVE-2016-9081

Track joomla exposure across your environment

Vulnios automatically cross-references your asset inventory against new joomla CVEs and surfaces only what affects you. No more sifting manually — actionable findings only.

Start a free scan

joomla security advisories

Critical Vulnerability: CVE-2017-8917 — joomla — joomla\!

Critical Vulnerability: CVE-2016-9081 — joomla — joomla\!

Track joomla exposure across your environment