4 matches found
CVE-2024-22637
Form Tools v3.1.1 was discovered to contain a reflected cross-site scripting XSS vulnerability via the component /formbuilder/preview.php?formid=2...
CVE-2024-22637
creationtimestamp| type| source ---|---|--- 2024-01-25 22:26:26+00:00| seen| https://t.me/ctinow/173839 2024-02-18 18:46:57+00:00| seen| https://t.me/ctinow/187334...
CVE-2024-22637
Form Tools v3.1.1 was discovered to contain a reflected cross-site scripting XSS vulnerability via the component /formbuilder/preview.php?formid=2...
CVE-2024-22637
CVE-2024-22637 refers to a reflected cross-site scripting (XSS) vulnerability in Form Tools v3.1.1, exploitable via the endpoint /form_builder/preview.php?form_id=2. Root cause: insufficient validation/sanitization in the preview component that processes the form_id parameter, enabling injection ...