FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

nothing found there

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
9fa1a0ac-b2e0-11e3-bb07-6cf0490a8c18Joomla! -- Core - Multiple Vulnerabilities

The JSST and the Joomla! Security Center report:

[20140301] - Core - SQL Injection

Inadequate escaping leads to SQL injection vulnerability.

[20140302] - Core - XSS Vulnerability

Inadequate escaping leads to XSS vulnerability in com_contact.

[20140303] - Core - XSS Vulnerability

Inadequate escaping leads to XSS vulnerability.

[20140304] - Core - Unauthorised Logins

Inadequate checking allowed unauthorised logins via GMail authentication.


Discovery 2014-03-01
Entry 2014-03-23
Modified 2014-04-30
joomla2
ge 2.5.* le 2.5.18

joomla3
ge 3.0.* le 3.2.2

http://developer.joomla.org/security/578-20140301-core-sql-injection.html
http://developer.joomla.org/security/579-20140302-core-xss-vulnerability.html
http://developer.joomla.org/security/580-20140303-core-xss-vulnerability.html
http://developer.joomla.org/security/581-20140304-core-unauthorised-logins.html
beb3d5fc-7ac5-11e5-b35a-002590263bf5Joomla! -- Core - Unauthorized Login vulnerability

The JSST and the Joomla! Security Center report:

[20140902] - Core - Unauthorized Logins

Inadequate checking allowed unauthorized logins via LDAP authentication.


Discovery 2014-09-23
Entry 2015-10-25
joomla3
lt 3.2.5

ge 3.3.0 lt 3.3.4

joomla2
lt 2.5.25

CVE-2014-6632
http://developer.joomla.org/security-centre/594-20140902-core-unauthorised-logins.html
https://www.joomla.org/announcements/release-news/5564-joomla-3-3-4-released.html
https://www.joomla.org/announcements/release-news/5563-joomla-2-5-25-released.html
cec4d01a-7ac5-11e5-b35a-002590263bf5Joomla! -- Core - Remote File Execution/Denial of Service vulnerabilities

The JSST and the Joomla! Security Center report:

[20140903] - Core - Remote File Inclusion

Inadequate checking allowed the potential for remote files to be executed.

[20140904] - Core - Denial of Service

Inadequate checking allowed the potential for a denial of service attack.


Discovery 2014-09-30
Entry 2015-10-25
joomla3
lt 3.2.6

ge 3.3.0 lt 3.3.5

joomla2
ge 2.5.4 lt 2.5.26

CVE-2014-7228
CVE-2014-7229
http://developer.joomla.org/security-centre/595-20140903-core-remote-file-inclusion.html
http://developer.joomla.org/security-centre/596-20140904-core-denial-of-service.html
https://www.joomla.org/announcements/release-news/5567-joomla-3-3-5-released.html
https://www.joomla.org/announcements/release-news/5566-joomla-2-5-26-released.html
4158c57e-5d39-11e3-bc1e-6cf0490a8c18Joomla! -- Core XSS Vulnerabilities

The JSST and the Joomla! Security Center report:

[20131101] Core XSS Vulnerability

Inadequate filtering leads to XSS vulnerability in com_contact.

[20131102] Core XSS Vulnerability

Inadequate filtering leads to XSS vulnerability in com_contact, com_weblinks, com_newsfeeds.

[20131103] Core XSS Vulnerability

Inadequate filtering leads to XSS vulnerability in com_contact.


Discovery 2013-11-01
Entry 2013-12-04
Modified 2014-04-23
joomla2
ge 2.5.* le 2.5.14

joomla3
ge 3.0.* le 3.1.5

http://developer.joomla.org/security/570-core-xss-20131101.html
http://developer.joomla.org/security/571-core-xss-20131102.html
http://developer.joomla.org/security/572-core-xss-20131103.html