Atreb92

**Name of the Vulnerable Software and Affected Versions** MachForm versions up to 21 **Description** The issue is related to an authenticated unrestricted file upload, which can lead to remote code execution. **Recommendations** For versions up to 21, update to a version that includes a fix for this issue, as the current version allows for unrestricted file uploads that can be exploited for remote code execution.

**Name of the Vulnerable Software and Affected Versions** MachForm versions up to 19 **Description** The issue is an unauthenticated stored cross-site scripting that affects users with valid sessions who can view compiled forms results. **Recommendations** For versions up to 19, update to a version that contains a fix for this issue to prevent exploitation.

**Name of the Vulnerable Software and Affected Versions** MachForm versions prior to 20 **Description** The issue is an authenticated stored cross-site scripting problem. **Recommendations** For versions prior to 20, update to version 20 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Machform versions prior to 20 **Description** The issue is related to an authenticated Blind SQL injection in the user account settings page. **Recommendations** For versions prior to 20, update to version 20 or later to resolve the issue.