CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

RedhatCVE•added 2025/05/23 9:34 a.m.•5 views

CVE-2024-22220

An issue was discovered in Terminalfour 7.4 through 7.4.0004 QP3 and 8 through 8.3.19, and Formbank through 2.1.10-FINAL. Unauthenticated Stored Cross-Site Scripting can occur, with resultant Admin Session Hijacking. The attack vectors are Form Builder and Form Preview...

6.3CVSS6.1AI score0.00276EPSS

Exploits0References1

OSV•added 2024/02/21 4:15 p.m.•1 views

CVE-2024-22220

6.3CVSS5.8AI score0.00276EPSS

Exploits0References2

NVD•added 2024/02/21 4:15 p.m.•8 views

CVE-2024-22220

6.3CVSS5.8AI score0.00276EPSS

Exploits0References2

Prion•added 2024/02/21 4:15 p.m.•9 views

Cross site scripting

6.4AI score0.00276EPSS

Exploits0References2

Vulnrichment•added 2024/02/21 12:0 a.m.•16 views

CVE-2024-22220

6.1AI score0.00276EPSS

Exploits0References2

Cvelist•added 2024/02/21 12:0 a.m.•18 views

CVE-2024-22220

6AI score0.00276EPSS

Exploits0References2

Positive Technologies•added 2024/02/21 12:0 a.m.•2 views

PT-2024-19285 · Terminalfour · Terminalfour +1

Name of the Vulnerable Software and Affected Versions: Terminalfour versions 7.4 through 7.4.0004 QP3 Terminalfour versions 8 through 8.3.19 Formbank versions through 2.1.10-FINAL Description: An issue allows Unauthenticated Stored Cross-Site Scripting, potentially leading to Admin Session...

6.3CVSS6.2AI score0.00276EPSS

Exploits0References5

CVE•added 2024/02/21 12:0 a.m.•6620 views

CVE-2024-22220

CVE-2024-22220 affects Terminalfour and Formbank: unauthenticated stored cross-site scripting can lead to admin session hijacking via the Form Builder and Form Preview. Affected: Terminalfour 7.4–7.4.0004 QP3, Terminalfour 8–8.3.19, and Formbank up to 2.1.10-FINAL. Root cause is XSS in form-relat...

6.3CVSS6AI score0.00276EPSS

Exploits0References2Affected Software2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by