Appnitro - Machform CVE

Filtered by vendor Appnitro Subscribe

Filtered by product Machform

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2013-4949	1 Appnitro	1 Machform	2017-08-29	6.8 MEDIUM	N/A
Unrestricted file upload vulnerability in view.php in Machform 2 allows remote attackers to execute arbitrary PHP code by uploading a PHP file, then accessing it via a direct request to the file in the upload form's directory in data/.
CVE-2013-4950	1 Appnitro	1 Machform	2017-08-29	4.3 MEDIUM	N/A
Cross-site scripting (XSS) vulnerability in view.php in Machform 2 allows remote attackers to inject arbitrary web script or HTML via the element_2 parameter.

Vulnerabilities (CVE)