Lucene search
K

685 matches found

Cvelist
Cvelist
added 2014/09/26 9:0 p.m.31 views

CVE-2014-6446

The Infusionsoft Gravity Forms plugin 1.5.3 through 1.5.10 for WordPress does not properly restrict access, which allows remote attackers to upload arbitrary files and execute arbitrary PHP code via a request to utilities/codegenerator.php...

7.5AI score0.46174EPSS
Exploits8References5
CVE
CVE
added 2014/09/26 9:0 p.m.58 views

CVE-2014-6446

CVE-2014-6446 affects the WordPress Infusionsoft Gravity Forms Add-on. The vulnerability exists in versions 1.5.3–1.5.10 and stems from improper access restriction, enabling remote attackers to upload arbitrary files and execute PHP code via a request to utilities/code_generator.php. Affected sof...

7.5CVSS7.7AI score0.46174EPSS
Exploits8References5Affected Software1
Patchstack
Patchstack
added 2014/08/01 12:0 a.m.10 views

WordPress Infusionsoft Gravity Forms Add-on Plugin <= 1.5.6 - XSS

This plugin is prone to a cross site scripting vulnerability. Solution Update the plugin...

1.4AI score
Exploits0Affected Software1
wpexploit
wpexploit
added 2014/04/25 12:0 a.m.20 views

Infusionsoft Gravity Forms Add-on < 1.5.7 - Unauthenticated Reflected XSS

The Infusionsoft Gravity Forms Add-on WordPress plugin was affected by an Unauthenticated Reflected XSS security vulnerability...

4.3CVSS2.1AI score0.03902EPSS
Exploits2References1
WPVulnDB
WPVulnDB
added 2014/04/25 12:0 a.m.18 views

Infusionsoft Gravity Forms Add-on < 1.5.7 - Unauthenticated Reflected XSS

The Infusionsoft Gravity Forms Add-on WordPress plugin was affected by an Unauthenticated Reflected XSS security vulnerability. PoC...

4.3CVSS1.2AI score0.03902EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder