Lucene search
CVE-2024-35191
Formie plugin vulnerability in versions prior to 2.1.6 allows execution of malicious Twig code in form fields
Show more
| Reporter | Title | Published | Views | Family All 7 |
|---|---|---|---|---|
 | CVE-2024-35191 verbb/formie Server-Side Template Injection for variable-enabled settings | 20 May 202420:26 | – | cvelist |
 | verbb/formie Server-Side Template Injection for variable-enabled settings | 20 May 202420:26 | – | github |
 | Template Injection | 23 May 202412:01 | – | veracode |
 | CVE-2024-35191 verbb/formie Server-Side Template Injection for variable-enabled settings | 20 May 202420:26 | – | vulnrichment |
 | CVE-2024-35191 | 20 May 202421:15 | – | osv |
| verbb/formie Server-Side Template Injection for variable-enabled settings | 20 May 202420:26 | – | osv |
 | CVE-2024-35191 | 20 May 202421:15 | – | nvd |
[
{
"vendor": "verbb",
"product": "formie",
"versions": [
{
"version": "< 2.1.6",
"status": "affected"
}
]
}
]Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo20 May 2024 21:15Current
6.7Medium risk
Vulners AI Score6.7
CVSS34.4
EPSS0.00043
SSVC