Nex-forms Security Vulnerabilities and Issues — Nex-forms CVE List

Lucene search

BasixonlineNex-forms

3 matches found

CVE•added 2021/07/19 5:15 p.m.•60 views

CVE-2021-34676

Basix NEX-Forms through 7.8.7 allows authentication bypass for Excel report generation.

7.5CVSS7.8AI score0.00894EPSS

CVE•added 2021/07/19 5:15 p.m.•47 views

CVE-2021-34675

Basix NEX-Forms through 7.8.7 allows authentication bypass for stored PDF reports.

7.5CVSS7.7AI score0.00894EPSS

CVE•added 2021/12/13 11:15 a.m.•45 views

CVE-2021-24705

The NEX-Forms WordPress plugin before 8.4.3 does not have CSRF checks in place when editing a form, and does not escape some of its settings as well as form fields before outputting them in attributes. This could allow attackers to make a logged in admin edit arbitrary forms with Cross-Site Scripti...

4.8CVSS4.9AI score0.00205EPSS