Breach404
Back to Insights
Cloud Security2 min readJuly 13, 2026

CISA warns of actively exploited RCE flaws in Joomla extensions

Attackers are actively exploiting remote code execution vulnerabilities in the iCagenda and Balbooa Forms extensions for Joomla by uploading malicious files to gain complete control of affected websites. If your organization uses Joomla with these extensi

Could your website be vulnerable to attacks like this?

Run a free 10-point security scan on your site — headers, SSL, DNS, and more. Results in 15 seconds.

Test Your Site Now — It's Free