joomla

Critical password reset and stored cross-site scripting (XSS) vulnerabilities in Joomla could be easily exploited; PoC available

On: June 8, 2021

Cybersecurity specialists reported the finding of two vulnerabilities in Joomla, one of the most popular content management systems (CMS) nowadays, with more than 1.5 million active users. Experts describe theseRead More →

Multiple Cross-site scripting XSS vulnerabilities found in Joomla

On: June 3, 2020

In: Vulnerabilities

A group of pentest training specialists has reported the finding of multiple vulnerabilities in Joomla, one of the most widely used content management systems (CMS) in the world. According toRead More →

Joomla suffers data breach; registered user details leaked

On: June 1, 2020

In: Incidents

Content management systems (CMS) are one of the most frequent targets of cyberattacks, web application penetration testing specialists say. An example of this is the recent report by security teamRead More →

Critical vulnerability found in Joomla! Update as soon as possible

On: October 9, 2019

In: Vulnerabilities

A vulnerability testing specialist just revealed a zero-day vulnerability in versions of Joomla, the popular content management system (CMS) launched between September 2012 and December 2015. The vulnerability could reportedlyRead More →

XSRF vulnerability in phpMyAdmin; there is no patch to fix this flaw so far

On: September 18, 2019

In: Vulnerabilities

Vulnerability testing specialists have reported the presence of an unpatched zero-day vulnerability in the software of phpMyAdmin, one of the world’s most widely used MySQL and MariaDB database management applications.Read More →

Vulnerability exposes websites in Drupal, Joomla and TYPO3

On: May 11, 2019

In: Vulnerabilities

Web application security testing experts report that sites running Drupal, Joomla or TYPO3 are exposed to multiple variants of cyberattacks due to a vulnerability that hackers might exploit to run malicious code;Read More →

Joomla Update Patches Critical SQL Injection Vulnerability

Experts spotted a login page flaw in Joomla that exposes admin credentials

On: September 23, 2017

In: Vulnerabilities

Researchers at RIPS Technologies discovered a login page vulnerability affecting Joomla versions between 1.5 and 3.7.5 that exposes admin credentials. Experts at RIPS Technologies discovered a login page flaw affectingRead More →

WordPress, Joomla, and Magento Continue to Be the Most Hacked CMSs

On: January 9, 2017

In: Incidents, Vulnerabilities

Based on statistical data gathered by Sucuri from 7,937 compromised websites, WordPress, Joomla, and Magento, in this order, continued to be the most hacked CMS platforms in the third quarterRead More →

Vulnerability in Joomla Allows Attackers to Reset Passwords and Take Over Sites

On: December 14, 2016

In: Vulnerabilities

The Joomla Project released version 3.6.5 of the Joomla CMS that addresses three security bugs, of which one can allow attackers to take over vulnerable sites. If this wasn’t badRead More →

Joomla! readies patch for core vulnerability so critical it isn’t talking

On: October 26, 2016

In: Vulnerabilities

Patch to drop 1400 UTC, Tuesday. And the haste of its release suggests this is scary. The world’s second-favourite content management system, Joomla!, is warning of a critical security holeRead More →

joomla

Critical password reset and stored cross-site scripting (XSS) vulnerabilities in Joomla could be easily exploited; PoC available

Multiple Cross-site scripting XSS vulnerabilities found in Joomla

Joomla suffers data breach; registered user details leaked

Critical vulnerability found in Joomla! Update as soon as possible

XSRF vulnerability in phpMyAdmin; there is no patch to fix this flaw so far

Vulnerability exposes websites in Drupal, Joomla and TYPO3

Experts spotted a login page flaw in Joomla that exposes admin credentials

WordPress, Joomla, and Magento Continue to Be the Most Hacked CMSs

Vulnerability in Joomla Allows Attackers to Reset Passwords and Take Over Sites

Joomla! readies patch for core vulnerability so critical it isn’t talking

TunnelCrack: Two serious vulnerabilities in VPNs discovered, had been dormant since 1996

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]

Massive NVIDIA GPU Exploit Found. How Hackers Can Take Down 35% of AI Systems in Cloud!

Blast-RADIUS Attack Exploting Critical RADIUS Flaw Could Compromise Your Network

14 Million Servers Vulnerable to Critical OpenSSH Bug: Become Remote Admin with CVE-2024-6387

How Safe is Your TinyProxy? Step-by-Step Guide to Exploiting Tinyproxy’s Zero Day Vulnerability

Eternal Malware: CVE-2024-3400 Rootkits Persist Through Palo Alto Firewalls Updates and Resets

WinRAR and ZIP File Exploits: This ZIP File Hack Could Let Malware Bypass Your Antivirus

5 Techniques Hackers Use to Jailbreak ChatGPT, Gemini, and Copilot AI systems

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Hacking Pagers to Explosions: Israel’s Covert Cyber-Physical Sabotage Operation Against Hezbollah!

Five Techniques for Bypassing Microsoft SmartScreen and Smart App Control (SAC) to Run Malware in Windows

How Millions of Phishing Emails were Sent from Trusted Domains: EchoSpoofing Explained

How to implement Principle of Least Privilege(Cloud Security) in AWS, Azure, and GCP cloud

The 11 Essential Falco Cloud Security Rules for Securing Containerized Applications at No Cost

Hack-Proof Your Cloud: The Step-by-Step Continuous Threat Exposure Management CTEM Strategy for AWS & AZURE

Web-Based PLC Malware: A New Technique to Hack Industrial Control Systems

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Hackers’ Guide to Rogue VM Deployment: Lessons from the MITRE hack

Eternal Malware: CVE-2024-3400 Rootkits Persist Through Palo Alto Firewalls Updates and Resets

Major Python Infrastructure Breach – Over 170K Users Compromised. How Safe Is Your Code?

How to exploit Windows Defender Antivirus to infect a device with malware

Cyber Security Channel

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]