Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
appnitro vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2018-6409
An issue exists in Appnitro MachForm prior to 4.2.3. The module in charge of serving stored files gets the path from the database. Modifying the name of the file to serve on the corresponding ap_form table leads to a path traversal vulnerability via the download.php q parameter.
Machform Machform 4.2.3
1 EDB exploit
9.8
CVSSv3
CVE-2018-6410
An issue exists in Appnitro MachForm prior to 4.2.3. There is a download.php SQL injection via the q parameter.
Machform Machform 4.2.3
1 EDB exploit
9.8
CVSSv3
CVE-2018-6411
An issue exists in Appnitro MachForm prior to 4.2.3. When the form is set to filter a blacklist, it automatically adds dangerous extensions to the filters. If the filter is set to a whitelist, the dangerous extensions can be bypassed through ap_form_elements SQL Injection.
Machform Machform 4.2.3
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30924
CVE-2024-3400
overflow
CVE-2024-23528
CVE-2024-21338
CVE-2024-3818
CVE-2024-23535
NULL pointer dereference
elevation of privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started