2 matches found
VulnCheck KEV: CVE-2023-2877
The Formidable Forms WordPress plugin before 6.3.1 does not adequately authorize the user or validate the plugin URL in its functionality for installing add-ons. This allows a user with a role as low as Subscriber to install and activate arbitrary plugins of arbitrary versions from the...
Cisco Hosted Collaboration Mediation Fulfillment Directory Traversal Vulnerability (CNVD-2016-07110)
Cisco Hosted Collaboration Solution HCS is a cloud service that provides communication and collaboration solutions. A security vulnerability exists in the web interface of Cisco Hosted Collaboration Mediation Fulfillment. Due to the program not properly validating the HTTP URL format. An...