CVE-2024-47389

Name of the Vulnerable Software and Affected Versions Basix NEX-Forms – Ultimate Form Builder versions n/a through 8.7.3

Description The issue is related to improper neutralization of input during web page generation, leading to a Cross-Site Scripting (XSS) vulnerability, specifically Reflected XSS. This occurs due to improper handling of input.

Recommendations For versions n/a through 8.7.3, update to a version later than 8.7.3 to resolve the issue. As a temporary workaround, consider restricting user input to minimize the risk of exploitation.