CISA Warns of Joomla Sites Running iCagenda or Balbooa Exploited in Attacks

The Cybersecurity and Infrastructure Security Agency (CISA) has added two high-risk Joomla extension flaws to its Known Exploited Vulnerabilities (KEV) Catalog. Both vulnerabilities allow unrestricted file uploads, a weakness that attackers can abuse to upload malicious files and potentially take control of vulnerable websites. The affected products are iCagenda and Balbooa Forms, two extensions used […]

The post CISA Warns of Joomla Sites Running iCagenda or Balbooa Exploited in Attacks appeared first on Cyber Security News.

This article has been indexed from Cyber Security News

Read the original article: