CNNVD-202507-2423 Information

CNNVD ID

CNNVD-202507-2423

Related CVE

CVE-2025-49485

• CNNVD Published: 2025-07-18

Description (Chinese)

Balbooa Forms是Balbooa公司的一款Joomla扩展程序。 Balbooa Forms 1.0.0-2.3.1.1版本存在SQL注入漏洞，该漏洞源于对参数id的错误操作导致SQL注入攻击。

Description (English)

Balbooa Forms is a Jomla extension for Balbooa. The version of Balbooa Forms 1.0.0 - 2.3.1.1 contains an injection loophole in SQL, which results from an error in the operation of parameter id that led to the SQL injection attack.

Hazard Level

Medium

Vulnerability Type

SQL注入

Affected Vendor

Balbooa

Published

2025-07-18

Last Modified

2026-02-24

References

https://extensions.joomla.org/extension/forms/ https://access.redhat.com/security/cve/cve-2025-49485

Patch

https://extensions.joomla.org/extension/forms/