Skip to content
The Nexus
DossierENTITY

Joomla

Coverage of Joomla in the Nexus archive.

Earliest in view: Apr 9 · 16:15 UTCMost recent: Jul 8 · 05:33 UTC
Co-mentioned in this coverage
Recent coverage
  • SECURITYJul 8 · 05:33 UTCTHE HACKER NEWS
    CISA Adds 4 Actively Exploited Adobe, Joomla, and Langflow Flaws to KEV

    CISA added four actively exploited vulnerabilities to its KEV catalog, including a critical path traversal flaw in Adobe ColdFusion (CVE-2026-48282) that could enable arbitrary code execution. The other flaws affect Joomla and Langflow, with all vulnerabilities being actively exploited.

  • SECURITYApr 10 · 06:28 UTCTHE HACKER NEWS
    Backdoored Smart Slider 3 Pro Update Distributed via Compromised Nextend Servers

    Unknown threat actors compromised the update system for the Smart Slider 3 Pro plugin for WordPress and Joomla, distributing a backdoored version (3.5.1.35) via hijacked Nextend Servers. Patchstack, a WordPress security company, reported the incident, which affects a plugin with over 800,000 active installations.

  • SECURITYApr 9 · 16:15 UTCBLEEPING COMPUTER
    Smart Slider updates hijacked to push malicious WordPress, Joomla versions

    Hackers hijacked the update system for the Smart Slider 3 Pro plugin, distributing malicious versions of WordPress and Joomla with multiple backdoors. The attack compromised the update process, allowing unauthorized access and potential data breaches.