Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
machform machform 4.2.3 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2018-6409
An issue exists in Appnitro MachForm prior to 4.2.3. The module in charge of serving stored files gets the path from the database. Modifying the name of the file to serve on the corresponding ap_form table leads to a path traversal vulnerability via the download.php q parameter.
Machform Machform 4.2.3
1 EDB exploit
7.5
CVSSv2
CVE-2018-6410
An issue exists in Appnitro MachForm prior to 4.2.3. There is a download.php SQL injection via the q parameter.
Machform Machform 4.2.3
1 EDB exploit
7.5
CVSSv2
CVE-2018-6411
An issue exists in Appnitro MachForm prior to 4.2.3. When the form is set to filter a blacklist, it automatically adds dangerous extensions to the filters. If the filter is set to a whitelist, the dangerous extensions can be bypassed through ap_form_elements SQL Injection.
Machform Machform 4.2.3
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started