Convert Forms Project Convert Forms vulnerabilities
4 known vulnerabilities affecting convert_forms_project/convert_forms.
Total CVEs
4
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1MEDIUM1LOW1
Vulnerabilities
Page 1 of 1
CVE-2018-10063P3HIGHCVSS 7.8PoCfixed in 2.0.42018-04-12
CVE-2018-10063 [HIGH] CVE-2018-10063: The Convert Forms extension before 2.0.4 for Joomla! is vulnerable to Remote Command Execution using
The Convert Forms extension before 2.0.4 for Joomla! is vulnerable to Remote Command Execution using CSV Injection that is mishandled when exporting a Leads file.
nvd
CVE-2024-40744P2CRITICALCVSS 9.8≥ 1.0.0, < 4.4.82024-12-04
CVE-2024-40744 [CRITICAL] CWE-434 CVE-2024-40744: Unrestricted file upload via security bypass in Convert Forms component for Joomla in versions befor
Unrestricted file upload via security bypass in Convert Forms component for Joomla in versions before 4.4.8.
nvd
CVE-2024-40745P4MEDIUMCVSS 5.4≥ 1.0.0, < 4.4.82024-12-04
CVE-2024-40745 [MEDIUM] CWE-79 CVE-2024-40745: Reflected Cross site scripting vulnerability in Convert Forms component for Joomla in versions befor
Reflected Cross site scripting vulnerability in Convert Forms component for Joomla in versions before 4.4.8.
nvd
CVE-2025-22212P4LOWCVSS 2.7≥ 1.0.0, < 4.4.92025-03-05
CVE-2025-22212 [LOW] CWE-89 CVE-2025-22212: A SQL injection vulnerability in the Convert Forms component versions 1.0.0-1.0.0 - 4.4.9 for Joomla
A SQL injection vulnerability in the Convert Forms component versions 1.0.0-1.0.0 - 4.4.9 for Joomla allows authenticated attackers (administrator) to execute arbitrary SQL commands in the submission management area in backend.
nvd