- [20200803] - Core - Directory traversal in com_media
- [20200802] - Core - Open redirect in com_content vote feature
- [20200801] - Core - XSS in mod_latestactions
- [20200706] - Core - System Information screen could expose redis or proxy credentials
- [20200705] - Core - Escape mod_random_image link
- [20200704] - Core - Variable tampering via user table class
- [20200703] - Core - CSRF in com_privacy remove-request feature
- [20200702] - Core - Missing checks can lead to a broken usergroups table record
- [20200701] - Core - CSRF in com_installer ajax_install endpoint
- [20200604] - Core - XSS in jQuery.htmlPrefilter