Описание
Forms generated by JQueryForm.com before 2022-02-05 allows a remote authenticated attacker to bypass authentication and access the administrative section of other forms hosted on the same web server. This is relevant only when an organization hosts more than one of these forms on their server.
Ссылки
- Vendor Advisory
- Third Party Advisory
- Third Party Advisory
- Vendor Advisory
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2022-02-05 (исключая)
cpe:2.3:a:jqueryform:jqueryform:*:*:*:*:*:*:*:*
EPSS
Процентиль: 72%
0.00703
Низкий
8.8 High
CVSS3
6 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
CVSS3: 8.8
github
почти 4 года назад
Forms generated by JQueryForm.com before 2022-02-05 allows a remote authenticated attacker to bypass authentication and access the administrative section of other forms hosted on the same web server. This is relevant only when an organization hosts more than one of these forms on their server.
EPSS
Процентиль: 72%
0.00703
Низкий
8.8 High
CVSS3
6 Medium
CVSS2
Дефекты
NVD-CWE-Other