44 matches found
EUVD-2024-29168
Malicious code in bioql PyPI...
EUVD-2024-36880
Malicious code in bioql PyPI...
EUVD-2024-52349
Malicious code in bioql PyPI...
EUVD-2024-29166
Malicious code in bioql PyPI...
CVE-2024-31272
Cross-Site Request Forgery CSRF vulnerability in Repute InfoSystems ARForms Form Builder.This issue affects ARForms Form Builder: from n/a through 1.6.1...
CVE-2024-54223
Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in reputeinfosystems ARForms Form Builder arforms-form-builder allows Code Injection.This issue affects ARForms Form Builder: from n/a through = 1.7.1...
CVE-2024-1945
The Contact Form, Survey & Popup Form Plugin for WordPress – ARForms Form Builder plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'arfliteremovepreviewdata' function in all versions up to, and including, 1.6.4. This makes it possible for...
CVE-2024-37920
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Repute InfoSystems ARForms Form Builder allows Reflected XSS.This issue affects ARForms Form Builder: from n/a through 1.6.7...
CVE-2024-31270
Missing Authorization vulnerability in Repute InfoSystems ARForms Form Builder.This issue affects ARForms Form Builder: from n/a through 1.6.1...
CVE-2024-54223
Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in Contact Form - Repute InfoSystems ARForms Form Builder allows Code Injection.This issue affects ARForms Form Builder: from n/a through 1.7.1...
CVE-2024-54223
Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in reputeinfosystems ARForms Form Builder arforms-form-builder allows Code Injection.This issue affects ARForms Form Builder: from n/a through = 1.7.1...
PT-2024-36101
Name of the Vulnerable Software and Affected Versions: ARForms Form Builder versions through 1.7.1 Description: The issue is related to improper neutralization of script-related HTML tags in a web page, allowing code injection. This is a Basic XSS vulnerability that affects ARForms Form Builder,...
WordPress plugin ARForms Form Builder 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
WordPress ARForms plugin <= 1.7.1 - HTML Injection vulnerability
HTML Injection vulnerability discovered by Pritam Dash Patchstack Alliance in WordPress Plugin ARForms Form Builder versions = 1.7.1...
CVE-2024-37920
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Repute InfoSystems ARForms Form Builder allows Reflected XSS.This issue affects ARForms Form Builder: from n/a through 1.6.7...
CVE-2024-37920
CVE-2024-37920 (ARForms Form Builder) is a Reflected XSS in ARForms Form Builder for WordPress, affecting 1.6.7 and earlier. The issue arises from improper input neutralization during web page generation, enabling reflected scripts. The Red Hat/NVD entries confirm the vulnerability details and ma...
CVE-2024-37920 WordPress ARForms Form Builder plugin <= 1.6.7 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Repute InfoSystems ARForms Form Builder allows Reflected XSS.This issue affects ARForms Form Builder: from n/a through 1.6.7...
WordPress ARForms Form Builder plugin <= 1.6.7 - Reflected Cross Site Scripting (XSS) vulnerability
Reflected Cross Site Scripting XSS vulnerability discovered by Yudistira Arya Patchstack Alliance in WordPress Plugin ARForms Form Builder versions = 1.6.7...
WordPress ARForms Form Builder Plugin <= 1.6.7 is vulnerable to Cross Site Scripting (XSS)
Software ARForms Form Builder Type Plugin Vulnerable versions = 1.6.7 Fixed in 1.6.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-37920 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b04d176ed420 Credits Yudistira Arya Required...
CVE-2024-31270
Missing Authorization vulnerability in Repute InfoSystems ARForms Form Builder.This issue affects ARForms Form Builder: from n/a through 1.6.1...