Skip to main content

Kunena

5 CVEs product

Monthly

CVE-2019-15120 MEDIUM POC This Month

The Kunena extension before 5.1.14 for Joomla!. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Kunena
NVD GitHub
CVSS 3.1
5.4
EPSS
1.4%
CVE-2017-5673 MEDIUM POC This Month

In the Kunena extension 5.0.2 through 5.0.4 for Joomla!, the forum message subject (aka topic subject) accepts JavaScript, leading to XSS. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Kunena
NVD
CVSS 3.0
6.1
EPSS
0.2%
CVE-2014-9103 MEDIUM POC PATCH This Month

Multiple cross-site scripting (XSS) vulnerabilities in the Kunena component before 3.0.6 for Joomla!. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Public exploit code available.

XSS Kunena
NVD
CVSS 2.0
4.3
EPSS
0.3%
CVE-2014-9102 MEDIUM POC This Month

Multiple SQL injection vulnerabilities in the Kunena component before 3.0.6 for Joomla!. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Kunena
NVD
CVSS 2.0
6.5
EPSS
0.3%
CVE-2012-4868 HIGH POC This Week

SQL injection vulnerability in news.php in the Kunena component 1.7.2 for Joomla!. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Kunena
NVD
CVSS 2.0
7.5
EPSS
0.3%
EPSS 1% CVSS 5.4
MEDIUM POC This Month

The Kunena extension before 5.1.14 for Joomla!. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Kunena
NVD GitHub
EPSS 0% CVSS 6.1
MEDIUM POC This Month

In the Kunena extension 5.0.2 through 5.0.4 for Joomla!, the forum message subject (aka topic subject) accepts JavaScript, leading to XSS. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Kunena
NVD
EPSS 0% CVSS 4.3
MEDIUM POC PATCH This Month

Multiple cross-site scripting (XSS) vulnerabilities in the Kunena component before 3.0.6 for Joomla!. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Public exploit code available.

XSS Kunena
NVD
EPSS 0% CVSS 6.5
MEDIUM POC This Month

Multiple SQL injection vulnerabilities in the Kunena component before 3.0.6 for Joomla!. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Kunena
NVD
EPSS 0% CVSS 7.5
HIGH POC This Week

SQL injection vulnerability in news.php in the Kunena component 1.7.2 for Joomla!. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Kunena
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy