convert_forms_project CVE Vulnerabilities & CVE List (4)

Products (CPE): — CVEs: 4

convert_forms_project vulnerability overview

Aggregates CVE and security vulnerability intelligence across all convert_forms_project-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.

Historical issues mainly involve vendor risk sql injection and vendor risk cross-site scripting and related problems; some flaws may lead to vendor impact session compromise.

Vulnerability distribution trend (last 24 months)

CVE	Summary	Source	Max CVSS	EPSS %	Published	Updated
CVE-2025-22212	A SQL injection vulnerability in the Convert Forms component versions 1.0.0-1.0.0 - 4.4.9 for Joomla allows authenticated attackers (administrator) to execute arbitrary SQL commands in the submission management area in backend.	[email protected]	2.7	0.02%	2025-03-05	2025-11-13
CVE-2024-40745	Reflected Cross site scripting vulnerability in Convert Forms component for Joomla in versions before 4.4.8.	[email protected]	5.4	0.15%	2024-12-04	2025-06-04
CVE-2024-40744	Unrestricted file upload via security bypass in Convert Forms component for Joomla in versions before 4.4.8.	[email protected]	9.8	0.09%	2024-12-04	2025-06-04
CVE-2018-10063	The Convert Forms extension before 2.0.4 for Joomla! is vulnerable to Remote Command Execution using CSV Injection that is mishandled when exporting a Leads file.	[email protected]	7.8	3.34%	2018-04-12	2024-11-21

cvelogic Threat Intelligence