CVE-2023-34476

CVE-2023-34476 concerns Joomla Proforms Basic (Proforms Basic component for Joomla) with SQL Injection in Joomla ≤ 1.6.0. The root cause is improper neutralization of special elements in SQL commands, enabling SQL injection. The NVD entry lists a base score of 9.8 (CRITICAL) with NETWORK attack v...

CVE-2023-40655

The CVE-2023-40655 entry concerns a reflected XSS in the Proforms Basic component for Joomla. Multiple sources (NVD, Red Hat, CVE List, Vulnrichment, and others) describe it as a reflected XSS affecting the Proforms Basic extension for Joomla, but none provide explicit affected versions or concre...