Joomla 1.5.x < 3.10.15 / 4.0.x < 4.4.3 / 5.0.x < 5.0.3 Multiple Vulnerabilities (5904-joomla-5-0-3-and-4-4-3-security-and-bug-fix-release)

medium Nessus Plugin ID 190786

Language:

Version 1.10 Jun 3, 2025, 3:12 PM CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:POC/RL:OF/RC:C") CVSS temporal metrics ("CVSSv3 temporal vector" set to "CVSS:3.0/E:P/RL:O/RC:C") Exploit attributes ("Exploit available" set to "True") Exploit attributes ("Exploitability ease" changed from "No known exploits are available" to "Exploits are available") Plugin Feed: 202506031512
Version 1.9 May 15, 2025, 5:17 AM Detection (remove script_exclude_keys for CGI scanning) Plugin Feed: 202505150517
Version 1.7 Nov 5, 2024, 12:50 PM CVSS metrics ("CVSSv3 score" set to 6.5) CVSS metrics ("CVSSv3 vector" set to "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L") CVSSv3 score source (changed from "CVE-2024-21722" to "CVE-2024-21726") Plugin Feed: 202411051250
Version 1.6 Oct 31, 2024, 10:05 AM CVSS metrics ("CVSSv3 score" set to 6.3) CVSS metrics ("CVSSv3 vector" set to "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L") CVSSv3 score source (set to "CVE-2024-21722") Plugin Feed: 202410311005
Version 1.5 Jul 12, 2024, 5:55 PM IAVM reference Plugin Feed: 202407121755
Version 1.4 Jun 5, 2024, 1:32 PM Required Scan configuration ("Enable cgi scanning" set to "True") Plugin Feed: 202406051332
Version 1.3 Mar 11, 2024, 4:51 PM Detection (updated detection logic) Plugin metadata Plugin Feed: 202403111651
Version 1.2 Feb 23, 2024, 3:16 PM IAVM reference STIG Severity (set to "I") Plugin Feed: 202402231516
Version 1.1 Feb 22, 2024, 1:14 PM CVE (set "CVE" coverage to "CVE-2024-21722,CVE-2024-21723,CVE-2024-21724,CVE-2024-21725,CVE-2024-21726") CVSS metrics ("CVSSv2 score" set to 4.3. "CVSSv3 score" set to 6.1. "CVSSv3 vector" set to "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N". "CVSSv2 vector" set to "CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N") CVSSv2 score source (changed from "CVE-2023-21726" to "CVE-2024-21725") CVSSv3 severity (based on None, severity decreased from "High" to "Medium") Plugin metadata Plugin Feed: 202402221314
Version 1.0 Feb 20, 2024, 7:41 PM New Plugin Feed: 202402201941

* Changelogs are generally available for changes made after Nov 1, 2022