11 matches found
EUVD-2023-38097
Malicious code in bioql PyPI...
CVE-2023-33971
Formcreator is a GLPI plugin which allow creation of custom forms and the creation of one or more tickets when the form is filled. A probable stored cross-site scripting vulnerability is present in Formcreator 2.13.5 and prior via the use of the use of FULLFORM for rendering. This could result in...
ROS-20240812-02
A vulnerability in the GLPI plugin that allows the creation of custom Formcreator forms is related to the the use of FULLFORM for rendering. Exploitation of the vulnerability could allow an attacker, acting remotely, to execute arbitrary javascript code...
CVE-2023-33971
Formcreator is a GLPI plugin which allow creation of custom forms and the creation of one or more tickets when the form is filled. A probable stored cross-site scripting vulnerability is present in Formcreator 2.13.5 and prior via the use of the use of FULLFORM for rendering. This could result in...
Cross site scripting
Formcreator is a GLPI plugin which allow creation of custom forms and the creation of one or more tickets when the form is filled. A probable stored cross-site scripting vulnerability is present in Formcreator 2.13.5 and prior via the use of the use of FULLFORM for rendering. This could result in...
CVE-2023-33971 Formcreator vulnerable to stored XSS from ##FULLFORM##
Formcreator is a GLPI plugin which allow creation of custom forms and the creation of one or more tickets when the form is filled. A probable stored cross-site scripting vulnerability is present in Formcreator 2.13.5 and prior via the use of the use of FULLFORM for rendering. This could result in...
CVE-2023-33971 Formcreator vulnerable to stored XSS from ##FULLFORM##
Formcreator is a GLPI plugin which allow creation of custom forms and the creation of one or more tickets when the form is filled. A probable stored cross-site scripting vulnerability is present in Formcreator 2.13.5 and prior via the use of the use of FULLFORM for rendering. This could result in...
CVE-2023-33971 Formcreator vulnerable to stored XSS from ##FULLFORM##
Formcreator is a GLPI plugin which allow creation of custom forms and the creation of one or more tickets when the form is filled. A probable stored cross-site scripting vulnerability is present in Formcreator 2.13.5 and prior via the use of the use of FULLFORM for rendering. This could result in...
CVE-2023-33971
CVE-2023-33971 concerns the Formcreator GLPI plugin (versions 2.13.5 and earlier) with a reported stored cross-site scripting vulnerability. The issue arises from rendering with the ##FULLFORM## mechanism, which could allow arbitrary JavaScript execution in an admin/tech context. No patch is indi...
Formcreator 跨站脚本漏洞
Formcreator is a plugin that allows the creation of easily accessible custom forms. A security vulnerability exists in Formcreator 2.13.5 and prior versions, which stems from a stored cross-site scripting XSS vulnerability that can be exploited by an attacker to execute arbitrary javascript code...
PT-2023-24611 · Unknown +1 · Formcreator +1
Name of the Vulnerable Software and Affected Versions: Formcreator versions 2.13.5 and prior Description: A stored cross-site scripting issue is present in the Formcreator plugin, potentially allowing arbitrary javascript code execution in an admin or tech context. This is due to the use of...