CVE-2025-26862

Unexpected authentication form rendering in HTML Form Adapter using only non-default redirectless mode in PingFederate allows authentication attempts which may enable brute force login attacks...

CVE-2025-26862 PingFederate unexpected browser flow initiation in redirectless mode

Unexpected authentication form rendering in HTML Form Adapter using only non-default redirectless mode in PingFederate allows authentication attempts which may enable brute force login attacks...

PT-2025-43964

Name of the Vulnerable Software and Affected Versions PingFederate affected versions not specified Description A configuration issue in PingFederate’s HTML Form Adapter, specifically when operating in non-default redirectless mode, can lead to unexpected authentication form rendering. This allows...

Drupal Core 跨站脚本漏洞

Drupal is an open source content management system developed by the Drupal community using the PHP language. A cross-site scripting vulnerability exists in Drupal Core, which can be exploited by an attacker to cause HTML to render affected forms...

Drupal Core Form Rendering Remote Code Execution (CVE-2018-7600)

A code execution vulnerability exists in Drupal Core. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

PT-2020-13649 · Drupal · Drupal Core

Name of the Vulnerable Software and Affected Versions: Drupal Core versions prior to 8.8.10 Drupal Core versions prior to 8.9.6 Drupal Core versions prior to 9.0.6 Description: The issue is related to an Access Bypass vulnerability in Drupal Core, where an attacker can exploit the way HTML is...

PT-2020-6402 · Drupal · Drupal Core

Name of the Vulnerable Software and Affected Versions: Drupal Core versions prior to 8.8.10 Drupal Core versions prior to 8.9.6 Drupal Core versions prior to 9.0.6 Description: A cross-site scripting issue in Drupal Core allows an attacker to exploit the way HTML is rendered for affected forms...

Cross-Site Scripting in Wagtail

Impact When a form page type is made available to Wagtail editors through the wagtail.contrib.forms app, and the page template is built using Django's standard form rendering helpers such as form.asp as directed in the documentation, any HTML tags used within a form field's help text will be...

Wagtail -- XSS vulnerability

GitHub Advisory Database: When a form page type is made available to Wagtail editors through the wagtail.contrib.forms app, and the page template is built using Django's standard form rendering helpers such as form.asp as directed in the documentation, any HTML tags used within a form field's hel...

[SECURITY] Fedora 31 Update: php-horde-Horde-Form-2.0.20-1.fc31

The HordeForm package provides form rendering, validation, and other functionality for the Horde Application Framework...

Fedora: Security Advisory for php-horde-Horde-Form (FEDORA-2020-a55b70b4ab)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 30 Update: php-horde-Horde-Form-2.0.20-1.fc30

The HordeForm package provides form rendering, validation, and other functionality for the Horde Application Framework...

[SECURITY] Fedora 32 Update: php-horde-Horde-Form-2.0.20-1.fc32

The HordeForm package provides form rendering, validation, and other functionality for the Horde Application Framework...

[SECURITY] Fedora 29 Update: php-horde-Horde-Form-2.0.19-1.fc29

The HordeForm package provides form rendering, validation, and other functionality for the Horde Application Framework...

[SECURITY] Fedora 28 Update: php-horde-Horde-Form-2.0.19-1.fc28

The HordeForm package provides form rendering, validation, and other functionality for the Horde Application Framework...

[SECURITY] Fedora 25 Update: php-horde-Horde-Form-2.0.18-1.fc25

The HordeForm package provides form rendering, validation, and other functionality for the Horde Application Framework...

[SECURITY] Fedora 26 Update: php-horde-Horde-Form-2.0.18-1.fc26

The HordeForm package provides form rendering, validation, and other functionality for the Horde Application Framework...

[SECURITY] Fedora 22 Update: php-horde-Horde-Form-2.0.10-1.fc22

The HordeForm package provides form rendering, validation, and other functionality for the Horde Application Framework...