Vulnerability Details CVE-2025-22212
A SQL injection vulnerability in the Convert Forms component versions 1.0.0-1.0.0 - 4.4.9 for Joomla allows authenticated attackers (administrator) to execute arbitrary SQL commands in the submission management area in backend.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 7.8%
CVSS Severity
CVSS v3 Score 2.7
References
Products affected by CVE-2025-22212
-
cpe:2.3:a:convert_forms_project:convert_forms:2.0.3
-
cpe:2.3:a:convert_forms_project:convert_forms:2.0.4
-
cpe:2.3:a:convert_forms_project:convert_forms:2.1.0
-
cpe:2.3:a:convert_forms_project:convert_forms:2.1.1
-
cpe:2.3:a:convert_forms_project:convert_forms:2.2.0
-
cpe:2.3:a:convert_forms_project:convert_forms:2.2.1
-
cpe:2.3:a:convert_forms_project:convert_forms:2.3.0
-
cpe:2.3:a:convert_forms_project:convert_forms:4.4.8