๐ฅ This vulnerability is being actively exploited in the wild (CISA Known Exploited Vulnerabilities catalog)
CVE-2026-56291: Balbooa Forms Unrestricted Upload of File with Dangerous Type Vulnerability
Summary
Balbooa Forms has a critical vulnerability that allows anyone to upload dangerous files without authentication, potentially leading to RCE (remote code execution, where an attacker can run commands on the affected system). This flaw is being actively exploited by attackers in the real world.
Solution / Mitigation
Apply mitigations in accordance with vendor instructions, following CISA's BOD 26-04 guidance for prioritizing security updates. If mitigations are unavailable, discontinue use of the product. Stakeholders must evaluate their systems' internet exposure and ensure compliance with BOD 26-04 patching guidelines by the due date of 2026-07-13.
Vulnerability Details
EPSS: 0.3%
Yes
๐ฅ Actively Exploited
July 9, 2026
Classification
Original source: https://nvd.nist.gov/vuln/detail/CVE-2026-56291
First tracked: July 10, 2026 at 02:01 PM
Classified by LLM (prompt v3) ยท confidence: 95%