iCagenda and Balbooa Forms Joomla Flaws Reportedly Exploited as Zero-Days
- Posted on July 13, 2026
- By The Hacker News
- 0 Views
- 1 min read
Critical security vulnerabilities have been identified in popular Joomla extensions iCagenda and Balbooa Forms, with evidence of active exploitation in the wild. These zero-day flaws allow attackers to upload malicious PHP files and execute arbitrary code on vulnerable websites. CISA has officially documented these threats in the Known Exploited Vulnerabilities catalog, urging administrators to apply patches immediately to prevent unauthorized server compromise and data breach incidents.
Summary auto-generated by AI from the original publisher's content. Editorial standards.