Convert Forms
by Joomla
CVEs (3)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2018-10063 | Hig | 0.54 | 7.8 | 0.10 | Apr 12, 2018 | The Convert Forms extension before 2.0.4 for Joomla! is vulnerable to Remote Command Execution using CSV Injection that is mishandled when exporting a Leads file. | ||
| CVE-2025-22212 | 0.00 | — | 0.00 | Mar 5, 2025 | A SQL injection vulnerability in the Convert Forms component versions 1.0.0-1.0.0 - 4.4.9 for Joomla allows authenticated attackers (administrator) to execute arbitrary SQL commands in the submission management area in backend. | |||
| CVE-2024-40745 | 0.00 | — | 0.00 | Dec 4, 2024 | Reflected Cross site scripting vulnerability in Convert Forms component for Joomla in versions before 4.4.8. |
- risk 0.54cvss 7.8epss 0.10
The Convert Forms extension before 2.0.4 for Joomla! is vulnerable to Remote Command Execution using CSV Injection that is mishandled when exporting a Leads file.
- CVE-2025-22212Mar 5, 2025risk 0.00cvss —epss 0.00
A SQL injection vulnerability in the Convert Forms component versions 1.0.0-1.0.0 - 4.4.9 for Joomla allows authenticated attackers (administrator) to execute arbitrary SQL commands in the submission management area in backend.
- CVE-2024-40745Dec 4, 2024risk 0.00cvss —epss 0.00
Reflected Cross site scripting vulnerability in Convert Forms component for Joomla in versions before 4.4.8.