Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Contact Form - Repute InfoSystems ARForms Form Builder allows Code Injection.This issue affects ARForms Form Builder: from n/a through 1.7.1.
History

Mon, 09 Dec 2024 19:15:00 +0000

Type Values Removed Values Added
First Time appeared Reputeinfosystems
Reputeinfosystems arforms Form Builder
CPEs cpe:2.3:a:reputeinfosystems:arforms_form_builder:*:*:*:*:*:*:*:*
Vendors & Products Reputeinfosystems
Reputeinfosystems arforms Form Builder
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Mon, 09 Dec 2024 11:45:00 +0000

Type Values Removed Values Added
Description Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Contact Form - Repute InfoSystems ARForms Form Builder allows Code Injection.This issue affects ARForms Form Builder: from n/a through 1.7.1.
Title WordPress ARForms plugin <= 1.7.1 - HTML Injection vulnerability
Weaknesses CWE-80
References
Metrics cvssV3_1

{'score': 5.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N'}


cve-icon MITRE

Status: PUBLISHED

Assigner: Patchstack

Published: 2024-12-09T11:31:58.869Z

Updated: 2024-12-09T18:40:00.581Z

Reserved: 2024-12-02T12:03:12.413Z

Link: CVE-2024-54223

cve-icon Vulnrichment

Updated: 2024-12-09T17:09:46.238Z

cve-icon NVD

Status : Received

Published: 2024-12-09T13:15:42.397

Modified: 2024-12-09T13:15:42.397

Link: CVE-2024-54223

cve-icon Redhat

No data.