Please complete all required fields!
We accept reports of security vulnerabilities for Joomla extensions. If you believe you have found a security vulnerability in an extension, please complete the following form. As our vulnerability policy explains, we may send or attempt to contact the developer of the extension.
Reports for the core should be made via https://developer.joomla.org/security.html , any reports made here will be forwarded to them for action
Note that we do not coordinate or publish every report we receive. We request that you please make a reasonable attempt to contact the affected developer. If the vulnerability you are reporting is already public, please provide the CERT or other vulnerability database number and indicate which vulnerability database the public report is from.
For additional information about the fields in this form, refer
to the instructions. If
you have any problems, please
Please provide as much information as you can. Incomplete or incorrect information may delay out investigation. When you are
finished, submit your report using the button at
the end of the form.
If you are reporting an extension that alters Joomla Core files, please select NO then enter the 3rd Party extension details
If the exploit directly affects Joomla core, please select YES.
This description is required(*)
Url on the Joomla Extensions Directory
a link to download the zip , please ensure it is available without restriction
Upon submission, if the form does not redirect to the thank you page, then please check form for any missing required fields or invalid entries. Any form errors will be highlighted. Correct any errors and press submit again to submit corrected form.
Form provided by RSJoomla