8214 matches found
MAL-2025-41245 Malicious code in @cf.cplace.platform/forms (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 7be4ed03fbd3f41262f582eab6a80ae6e67fe611301ef8cf9558555a0add3af9 The OpenSSF Package Analysis project identified '@cf.cplace.platform/forms' @ 9.1.99 npm as malicious. It is considered malicious because: - The...
PT-2025-33838 · Fortra · Fortra Filecatalyst
Name of the Vulnerable Software and Affected Versions: Fortra FileCatalyst versions affected versions not specified Description: An improper access control issue exists in the Workflow component of Fortra FileCatalyst. This allows unauthenticated users to upload arbitrary files via the order form...
Linux Distros Unpatched Vulnerability : CVE-2022-22728
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw in Apache libapreq2 versions 2.16 and earlier could cause a buffer overflow while processing multipart form uploads. A remote attacker could send a reque...
CVE-2025-54682
Cross-Site Request Forgery CSRF vulnerability in CRM Perks Connector for Gravity Forms and Google Sheets wp-gravity-forms-spreadsheets allows Cross Site Request Forgery.This issue affects Connector for Gravity Forms and Google Sheets: from n/a through = 1.2.4...
CVE-2025-54681
URL Redirection to Untrusted Site 'Open Redirect' vulnerability in CRM Perks Connector for Gravity Forms and Google Sheets wp-gravity-forms-spreadsheets allows Phishing.This issue affects Connector for Gravity Forms and Google Sheets: from n/a through = 1.2.4...
CVE-2025-7384
The Database for Contact Form 7, WPforms, Elementor forms plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.4.3 via deserialization of untrusted input in the getleaddetail function. This makes it possible for unauthenticated attackers to inject a P...
Malicious code in test-mlw2-forms-primp (npm)
The package test-mlw2-forms-primp was found to contain malicious code...
Malicious code in akero-forms (npm)
The package akero-forms was found to contain malicious code...
Malicious code in pru-forms (npm)
The package pru-forms was found to contain malicious code...
Malicious code in test-mlw2-chums-hazed-forms-irked (npm)
The package test-mlw2-chums-hazed-forms-irked was found to contain malicious code...
Malicious code in paychex-framework-forms (npm)
The package paychex-framework-forms was found to contain malicious code...
MAL-2025-9598 Malicious code in @vpr/react-forms (npm)
The package @vpr/react-forms was found to contain malicious code...
MAL-2025-35366 Malicious code in test-mlw2-forms-primp (npm)
The package test-mlw2-forms-primp was found to contain malicious code...
MAL-2025-35078 Malicious code in test-mlw2-chums-hazed-forms-irked (npm)
The package test-mlw2-chums-hazed-forms-irked was found to contain malicious code...
MAL-2025-28937 Malicious code in paychex-framework-forms (npm)
The package paychex-framework-forms was found to contain malicious code...
MAL-2025-30790 Malicious code in pru-forms (npm)
The package pru-forms was found to contain malicious code...
MAL-2025-14226 Malicious code in akero-forms (npm)
The package akero-forms was found to contain malicious code...
CVE-2025-49557
Adobe Commerce versions 2.4.9-alpha1, 2.4.8-p1, 2.4.7-p6, 2.4.6-p11, 2.4.5-p13, 2.4.4-p14 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be exploited by a low-privileged attacker to inject malicious scripts into vulnerable form fields. A successful attacker...
CVE-2025-54682
Cross-Site Request Forgery CSRF vulnerability in CRM Perks Connector for Gravity Forms and Google Sheets wp-gravity-forms-spreadsheets allows Cross Site Request Forgery.This issue affects Connector for Gravity Forms and Google Sheets: from n/a through = 1.2.4...
CVE-2025-54681
URL Redirection to Untrusted Site 'Open Redirect' vulnerability in CRM Perks Connector for Gravity Forms and Google Sheets wp-gravity-forms-spreadsheets allows Phishing.This issue affects Connector for Gravity Forms and Google Sheets: from n/a through = 1.2.4...