Breach404
Back to Insights
Cloud Security2 min readJuly 13, 2026

iCagenda and Balbooa Forms Joomla Flaws Reportedly Exploited as Zero-Days

Vulnerability researchers have discovered zero-day exploits being actively used against two popular Joomla extensions—iCagenda and Balbooa Forms—which means attackers are exploiting these flaws before patches are available. If your organization uses Jooml

Could your website be vulnerable to attacks like this?

Run a free 10-point security scan on your site — headers, SSL, DNS, and more. Results in 15 seconds.

Test Your Site Now — It's Free