| Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-6377 | 4.3 |
In Joomla! before 3.8.4, inadequate input filtering in com_fields leads to an XSS vulnerability in multiple field types, i.e., list, radio, and checkbox
|
13-02-2018 - 18:48 | 30-01-2018 - 17:29 | |
| CVE-2018-6376 | 7.5 |
In Joomla! before 3.8.4, the lack of type casting of a variable in a SQL statement leads to a SQL injection vulnerability in the Hathor postinstall message.
|
13-02-2018 - 18:10 | 30-01-2018 - 17:29 | |
| CVE-2018-6380 | 4.3 |
In Joomla! before 3.8.4, lack of escaping in the module chromes leads to XSS vulnerabilities in the module system.
|
13-02-2018 - 18:09 | 30-01-2018 - 17:29 | |
| CVE-2018-6379 | 4.3 |
In Joomla! before 3.8.4, inadequate input filtering in the Uri class (formerly JUri) leads to an XSS vulnerability.
|
13-02-2018 - 17:56 | 30-01-2018 - 17:29 |