Lucene search
+L

25 matches found

cve
cve
added 2021/01/20 3:11 a.m.65 views

CVE-2020-27852

The CVE-2020-27852 entry concerns Gravity Forms, a WordPress plugin, with a stored XSS in the survey feature exploitable via a textarea field before version 2.4.21. Affected: Gravity Forms (plugin) prior to 2.4.21. Root cause: unescaped/incorrect handling of textarea input in the survey feature t...

5.4CVSS5.2AI score0.00607EPSS
Exploits0References1Affected Software1
cve
cve
added 2021/01/20 3:8 a.m.74 views

CVE-2020-27850

Gravity Forms (Rocketgenius) stored XSS via the forms import feature, affecting versions prior to 2.4.21. The vulnerability allows an attacker to inject arbitrary script/HTML that is then interpreted by users with privileged roles (Administrator, Editor, etc.). Root cause is improper handling of ...

4.8CVSS4.8AI score0.00616EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2021/01/20 3:8 a.m.29 views

CVE-2020-27850

A stored Cross-Site Scripting XSS vulnerability in forms import feature in Rocketgenius Gravity Forms before 2.4.21 allows remote attackers to inject arbitrary web script or HTML via the import of a GF form. This code is interpreted by users in a privileged role Administrator, Editor, etc...

4.9AI score0.00616EPSS
Exploits0References1
cnnvd
cnnvd
added 2021/01/19 12:0 a.m.7 views

Rocketgenius Gravity Forms Cross-Site Scripting Vulnerability

A cross-site scripting vulnerability in Rocketgenius Gravity Forms before 2.4.21 allows remote attackers to inject arbitrary web script or HTML via imported GF forms...

4.8CVSS5.8AI score0.00616EPSS
Exploits0References2
packetstorm
packetstorm
added 2016/03/01 12:0 a.m.46 views

WordPress GravityForms 1.9.15.11 Cross Site Scripting

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Product: WordPress plugin GravityForms Product URL: http://www.gravityforms.com/ Vendor: Rocketgenius Vulnerability Type: Reflected Cross-site Scripting CWE-79 Vulnerable Versions: 1.9.15.11 other versions not tested Fixed Version: 1.9.16 Solution...

0.2AI score
Exploits0
Rows per page
Query Builder