Form Tools v3.1.1 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the component /form_builder/preview.php?form_id=2.
References
Link | Resource |
---|---|
https://packetstormsecurity.com/files/176403/Form-Tools-3.1.1-Cross-Site-Scripting.html | Exploit Third Party Advisory VDB Entry |
Configurations
History
15 Feb 2024, 15:19
Type | Values Removed | Values Added |
---|---|---|
First Time |
Formtools form Tools
|
|
CPE | cpe:2.3:a:formtools:form_tools:3.1.1:*:*:*:*:*:*:* |
29 Jan 2024, 15:57
Type | Values Removed | Values Added |
---|---|---|
First Time |
Formtools
Formtools form Toools |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.1 |
CPE | cpe:2.3:a:formtools:form_toools:3.1.1:*:*:*:*:*:*:* | |
References | () https://packetstormsecurity.com/files/176403/Form-Tools-3.1.1-Cross-Site-Scripting.html - Exploit, Third Party Advisory, VDB Entry | |
CWE | CWE-79 |
25 Jan 2024, 21:52
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-01-25 21:15
Updated : 2024-09-10 18:35
NVD link : CVE-2024-22637
Mitre link : CVE-2024-22637
CVE.ORG link : CVE-2024-22637
JSON object : View
Products Affected
formtools
- form_tools
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')