PT-2023-29253 · WordPress · Md Jakir Hosen Tiger Forms – Drag/Drop Form Builder

Seungyonglee

Publicado

2023-10-02

Atualizado

2023-10-07

CVE-2023-44474

CVSS v3.1

7.1

Alta

Vetor

AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L

Name of the Vulnerable Software and Affected Versions MD Jakir Hosen Tiger Forms – Drag and Drop Form Builder plugin versions prior to 2.0.0

Description The issue is related to an Unauth. Reflected Cross-Site Scripting (XSS) vulnerability. This type of vulnerability allows an attacker to inject malicious scripts into a website, potentially leading to unauthorized actions on behalf of the user.

Recommendations For MD Jakir Hosen Tiger Forms – Drag and Drop Form Builder plugin versions prior to 2.0.0, update to version 2.0.0 or later to resolve the issue.

Correção

XSS

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-79

Identificadores relacionados

CVE-2023-44474

Produtos afetados

Md Jakir Hosen Tiger Forms – Drag/Drop Form Builder

PT-2023-29253 · WordPress · Md Jakir Hosen Tiger Forms – Drag/Drop Form Builder

CVE-2023-44474

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 4