126 matches found
CVE-2014-6446
CVE-2014-6446 affects the WordPress Infusionsoft Gravity Forms Add-on. The vulnerability exists in versions 1.5.3–1.5.10 and stems from improper access restriction, enabling remote attackers to upload arbitrary files and execute PHP code via a request to utilities/code_generator.php. Affected sof...
WordPress Infusionsoft Gravity Forms Add-on Plugin <= 1.5.6 - XSS
This plugin is prone to a cross site scripting vulnerability. Solution Update the plugin...
Wordpress iMember360 Plugin 3.8.012 - 3.9.001 - Multiple Vulnerabilities
No description provided by source. ------------ BACKGROUND ------------ iMember360is a WordPress plugin that will turn a normal WordPress site into a full featured membership site. It includes all the protection controls you can imagine, yet driven by Infusionsoft's second-to-none CRM and...
WordPress Plugin iMember360 3.8.012 < 3.9.001 - Multiple Vulnerabilities
------------ BACKGROUND ------------ "iMember360is a WordPress plugin that will turn a normal WordPress site into a full featured membership site. It includes all the protection controls you can imagine, yet driven by Infusionsoft's second-to-none CRM and e-commerce engine." --...
Infusionsoft Gravity Forms Add-on < 1.5.7 - Unauthenticated Reflected XSS
The Infusionsoft Gravity Forms Add-on WordPress plugin was affected by an Unauthenticated Reflected XSS security vulnerability. PoC...
Infusionsoft Gravity Forms Add-on < 1.5.7 - Unauthenticated Reflected XSS
The Infusionsoft Gravity Forms Add-on WordPress plugin was affected by an Unauthenticated Reflected XSS security vulnerability...