Joomla · Convert Forms · CVE-2018-10063
Name of the Vulnerable Software and Affected Versions:
Convert Forms extension versions prior to 2.0.4
Description:
The issue concerns a Remote Command Execution vulnerability using CSV Injection. This occurs when the software mishandles the export of a Leads file, allowing for potential exploitation.
Recommendations:
For versions prior to 2.0.4, update to version 2.0.4 or later to resolve the issue.