Lucene search
K
Convert Forms ProjectConvert Forms

4 matches found

CVE
CVE
added 2024/12/04 3:1 p.m.83 views

CVE-2024-40744

CVE-2024-40744 affects the Joomla extension Convert Forms; versions prior to 4.4.8 are vulnerable. The issue is an unrestricted file upload via a security bypass in the Convert Forms component, enabling potential malicious uploads. The vulnerability is high impact (per CVSS 3.1: AV:N/AC:L/PR:N/UI...

9.8CVSS9.6AI score0.00497EPSS
CVE
CVE
added 2024/12/04 3:2 p.m.77 views

CVE-2024-40745

The CVE-2024-40745 entry concerns a Reflected Cross‑Site Scripting (XSS) vulnerability in the Joomla Convert Forms component, affecting versions prior to 4.4.8. Multiple connected sources (Red Hat, CVE lists, CNVD, CVE records) consistently identify the affected product as the Convert Forms compo...

5.4CVSS5.4AI score0.00218EPSS
CVE
CVE
added 2025/03/05 3:15 p.m.74 views

CVE-2025-22212

CVE-2025-22212 affects the Joomla Convert Forms extension versions 1.0.0–4.4.9. An authenticated administrator can exploit a SQL injection in the submission management area of the backend to execute arbitrary SQL commands. The CVSSv3.1 vector (AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N) yields a base sc...

2.7CVSS5.1AI score0.00302EPSS
CVE
CVE
added 2018/04/12 7:0 p.m.65 views

CVE-2018-10063

CVE-2018-10063 affects Joomla! Convert Forms extension prior to 2.0.4. The vulnerability is a CSV injection that enables remote command execution when exporting leads/form data, due to how CSV fields are handled during export. Documented impact includes potential arbitrary command execution with ...

7.8CVSS7.8AI score0.09568EPSS