Convert Forms CVEs and Security Vulnerabilities - OpenCVE

Filtered by vendor Convert Forms Project Subscriptions

Filtered by product Convert Forms Subscriptions

Search

Switch to Advanced Search (Beta)

Total 4 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2024-40744	2 Convert Forms Project, Tassosgr	2 Convert Forms, Convert Forms	2025-06-04	9.8 Critical
Unrestricted file upload via security bypass in Convert Forms component for Joomla in versions before 4.4.8.
CVE-2024-40745	1 Convert Forms Project	1 Convert Forms	2025-06-04	5.4 Medium
Reflected Cross site scripting vulnerability in Convert Forms component for Joomla in versions before 4.4.8.
CVE-2025-22212	1 Convert Forms Project	1 Convert Forms	2025-05-28	2.7 Low
A SQL injection vulnerability in the Convert Forms component versions 1.0.0-1.0.0 - 4.4.9 for Joomla allows authenticated attackers (administrator) to execute arbitrary SQL commands in the submission management area in backend.
CVE-2018-10063	1 Convert Forms Project	1 Convert Forms	2024-11-21	N/A
The Convert Forms extension before 2.0.4 for Joomla! is vulnerable to Remote Command Execution using CSV Injection that is mishandled when exporting a Leads file.

Page 1 of 1.