Tuttiquotidiani is completely free. Every day we aggregate news from 100+ sources and generate original AI summaries for you. Help us keep the service running with a small donation, or become TQ Pro for just €1/month.

iCagenda and Balbooa Forms Joomla Flaws Reportedly Exploited as Zero-Days

  • Posted on July 13, 2026
  • By The Hacker News
  • 0 Views
  • 1 min read
In brief

Critical security vulnerabilities have been identified in popular Joomla extensions iCagenda and Balbooa Forms, with evidence of active exploitation in the wild. These zero-day flaws allow attackers to upload malicious PHP files and execute arbitrary code on vulnerable websites. CISA has officially documented these threats in the Known Exploited Vulnerabilities catalog, urging administrators to apply patches immediately to prevent unauthorized server compromise and data breach incidents.

Summary auto-generated by AI from the original publisher's content. Editorial standards.

iCagenda and Balbooa Forms Joomla Flaws Reportedly Exploited as Zero-Days
iCagenda and Balbooa Forms Joomla Flaws Reportedly Exploited as Zero-Days

CISA adds exploited iCagenda and Balbooa Forms flaws to KEV after reported zero-day attacks enabled PHP uploads and remote code execution on sites.
continue reading...

Author
The Hacker News

You May Also Like