) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
Search Parameters:
- Keyword (text search): cpe:2.3:a:machform:machform:16:*:*:*:*:*:*:*
- CPE Name Search: true
There are 4 matching records.
Displaying matches 1 through 4.
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2024-37765 |
Machform up to version 19 is affected by an authenticated Blind SQL injection in the user account settings page. Published: July 01, 2024; 6:15:03 PM -0400 |
V4.0:(not available) V3.x:(not available) V2.0:(not available) |
| CVE-2024-37764 |
MachForm up to version 19 is affected by an authenticated stored cross-site scripting. Published: July 01, 2024; 6:15:03 PM -0400 |
V4.0:(not available) V3.x:(not available) V2.0:(not available) |
| CVE-2024-37763 |
MachForm up to version 19 is affected by an unauthenticated stored cross-site scripting which affects users with valid sessions whom can view compiled forms results. Published: July 01, 2024; 6:15:03 PM -0400 |
V4.0:(not available) V3.x:(not available) V2.0:(not available) |
| CVE-2024-37762 |
MachForm up to version 21 is affected by an authenticated unrestricted file upload which leads to a remote code execution. Published: July 01, 2024; 6:15:02 PM -0400 |
V4.0:(not available) V3.x:(not available) V2.0:(not available) |