121 matches found
fs234.infusionsoft.app Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1098361 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website...
un184.infusionsoft.app Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1098297 Security Researcher tbm Helped patch 2391 vulnerabilities Received 6 Coordinated Disclosure badges Received 6 recommendations , a holder of 6 badges for responsible and coordinated disclosure, found a security vulnerability affecting un184.infusionsoft.app website...
WordPress Infusionsoft Gravity Forms Cross-Site Scripting Vulnerability
WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.Infusionsoft Gravity Forms is a plug-in that automatically sends form submissions to the Infusionsoft CRM system. A cross-site scriptin...
CVE-2014-4536
Multiple cross-site scripting XSS vulnerabilities in tests/notAutotestContactServicepauseCampaign.php in the Infusionsoft Gravity Forms plugin before 1.5.6 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 go, 2 contactId, or 3 campaignId parameter...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in tests/notAutotestContactServicepauseCampaign.php in the Infusionsoft Gravity Forms plugin before 1.5.6 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 go, 2 contactId, or 3 campaignId parameter...
CVE-2014-4536
Multiple cross-site scripting XSS vulnerabilities in tests/notAutotestContactServicepauseCampaign.php in the Infusionsoft Gravity Forms plugin before 1.5.6 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 go, 2 contactId, or 3 campaignId parameter...
CVE-2014-4536
Infusionsoft Gravity Forms Add-on for WordPress is affected by CVE-2014-4536: multiple XSS vulnerabilities in tests/notAuto_test_ContactService_pauseCampaign.php, exploitable via the go, contactId, or campaignId parameters in versions before 1.5.6. The nuclei template and WPVulnDB entry corrobora...
CVE-2017-6216
novaksolutions/infusionsoft-php-sdk v2016-10-31 is vulnerable to a reflected XSS in the leadscoring.php resulting code execution...
CVE-2017-6216
novaksolutions/infusionsoft-php-sdk v2016-10-31 is vulnerable to a reflected XSS in the leadscoring.php resulting code execution...
CVE-2017-6216
CVE-2017-6216 affects novaksolutions/infusionsoft-php-sdk v2016-10-31. The connected documents confirm a reflected Cross-site Scripting vulnerability in leadscoring.php (via user-controlled input such as ContactId) that can result in code execution. CVSS data indicates a 3.0 vector with base scor...
CVE-2017-6216
novaksolutions/infusionsoft-php-sdk v2016-10-31 is vulnerable to a reflected XSS in the leadscoring.php resulting code execution...
cloudpipes.com XSS vulnerability
Vulnerable URL: https://www.cloudpipes.com/integrations/infusionsoft/segment/%22%27%2D%2D%21 Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 202179 VIP website status:| No Coordinated Disclosure Timeline:...
Wordpress infusionsoft plugin cross-site scripting vulnerability
WordPress is a set of WordPress Software Foundation's blogging platform developed using the PHP language, the platform supports personal blog sites set up on PHP and MySQL servers. infusionsoft is one of the marketing platform plug-ins. A cross-site scripting vulnerability exists in Wordpress...
CVE-2016-1000139
Reflected XSS in wordpress plugin infusionsoft v1.5.11...
CVE-2016-1000139
Reflected XSS in wordpress plugin infusionsoft v1.5.11...
Cross site scripting
Reflected XSS in wordpress plugin infusionsoft v1.5.11...
CVE-2016-1000139
The WordPress Infusionsoft Gravity Forms Add-on Plugin
CVE-2016-1000139
Reflected XSS in wordpress plugin infusionsoft v1.5.11...
WordPress Infusionsoft Gravity Forms Add-on Plugin <= 1.5.11 - XSS
This plugin is prone to a cross site scripting vulnerability. Solution Upgrade the plugin...
Infusionsoft Gravity Forms Add-on <= 1.5.11 - Unauthenticated Reflected Cross-Site Scripting (XSS)
The Infusionsoft Gravity Forms Add-on WordPress plugin was affected by an Unauthenticated Reflected Cross-Site Scripting XSS security vulnerability. PoC http://www.example.com/wp-content/plugins/infusionsoft/Infusionsoft/examples/leadscoring.php?ContactId=""...