iCagenda and Balbooa Forms Joomla Flaws Reportedly Exploited as Zero-Days
Summary
CISA has added two severe vulnerabilities in Joomla extensions, iCagenda and Balbooa Forms, to its Known Exploited Vulnerabilities catalog. These flaws are reportedly being exploited in the wild as zero-days and have received maximum CVSS severity ratings.
IFF Assessment
The exploitation of zero-day vulnerabilities in widely used CMS extensions represents a significant threat to websites and their data, making it bad news for defenders.
Severity
The article states both vulnerabilities are rated 10.0 on the CVSS scoring system, indicating a critical severity with high impact and exploitability.
CISA KEV: Listed as actively exploited. Federal patch due: July 13, 2026. Known ransomware use: Unknown.
Defender Context
This highlights the ongoing risk of zero-day exploits targeting popular website platforms and their extensions. Defenders should prioritize patching these known exploited vulnerabilities and maintain vigilance for further exploitation attempts.