Lucene search
HistoryFeb 28, 2023 - 2:15 p.m.
CVE-2023-24419
cve-2023-24419
csrf
formidable forms
nvd
security vulnerability
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
8.8 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
27.6%
Cross-Site Request Forgery (CSRF) vulnerability in Strategy11 Form Builder Team Formidable Forms pluginΒ <= 5.5.6 versions.
Affected configurations
Node
strategy11_form_builder_teamformidable_formsRangeβ€5.5.6
| CPE | Name | Operator | Version |
|---|---|---|---|
| strategy11:formidable_form_builder | strategy11 formidable form builder | lt | 5.5.7 |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "formidable",
"product": "Formidable Forms",
"vendor": "Strategy11 Form Builder Team",
"versions": [
{
"changes": [
{
"at": "5.5.7",
"status": "unaffected"
}
],
"lessThanOrEqual": "5.5.6",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
cvelist
cvelist
prion
prion
Cross site request forgery (csrf)
2023-02-28 14:15:00
openvas
openvas
WordPress Formidable Forms Builder Plugin < 5.5.7 CSRF Vulnerability
2023-05-05 00:00:00
wpvulndb
wpvulndb
Formidable Forms < 5.5.7 - Arbitrary Entry Deletion via CSRF
2023-02-02 00:00:00
nvd
nvd
CVE-2023-24419
2023-02-28 14:15:09
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
8.8 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
27.6%
Related for CVE-2023-24419