What is CVE-2021-47930?

CVE-2021-47930 is a high-severity vulnerability in Balbooa Joomla Forms Builder, classified under SQL Injection. CVSS score: 8.2/10. Published 2026-05-10.

How severe is CVE-2021-47930?

High severity. CVSS v3 base score is 8.2 out of 10.

SQL Injection in Balbooa Joomla Forms Builder

CVE-2021-47930

Balbooa Joomla Forms Builder 2.0.6 contains an unauthenticated SQL injection vulnerability in the form submission handler that allows remote attackers to execute arbitrary SQL queries. Attackers can send POST requests to the com_baforms co…

Vulnerability class: SQL Injection

EPSS: 0.001 (19.0th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.2 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N.

Affected products

Balbooa Joomla Forms Builder — versions 2.0.6

Weakness classification (CWE)

CWE-89 — SQL Injection

References

disclosure@vulncheck.com (exploit)
disclosure@vulncheck.com (product)
disclosure@vulncheck.com (third-party-advisory)

Frequently asked questions

What is CVE-2021-47930?: CVE-2021-47930 is a high-severity vulnerability in Balbooa Joomla Forms Builder, classified under SQL Injection. CVSS score: 8.2/10. Published 2026-05-10.
How severe is CVE-2021-47930?: High severity. CVSS v3 base score is 8.2 out of 10.