A vulnerable Joomla! extension has security flaws which leave your site open to malicious attacks.
To protect yourself:
- Joomla! maintains a searchable database of vulnerable extensions: https://vel.joomla.org/
- Keep your extensions updated
- Remove any extensions you aren’t using on your site
- Make use of the Joomla! Extensions Directory (JED). All extensions have user reviews and ratings
