CVE-2024-22305

Authorization Bypass Through User-Controlled Key vulnerability in ali Forms Contact Form builder with drag & drop for WordPress – Kali Forms.This issue affects Contact Form builder with drag & drop for WordPress – Kali Forms: from n/a through 2.3.36.
Configurations

Configuration 1 (hide)

cpe:2.3:a:kaliforms:kali_forms:*:*:*:*:*:wordpress:*:*

History

21 Nov 2024, 08:56

Type Values Removed Values Added
References () https://patchstack.com/database/vulnerability/kali-forms/wordpress-kali-forms-plugin-2-3-38-insecure-direct-object-references-idor-vulnerability?_s_id=cve - Third Party Advisory () https://patchstack.com/database/vulnerability/kali-forms/wordpress-kali-forms-plugin-2-3-38-insecure-direct-object-references-idor-vulnerability?_s_id=cve - Third Party Advisory
CVSS v2 : unknown
v3 : 8.1
v2 : unknown
v3 : 7.5

05 Feb 2024, 20:42

Type Values Removed Values Added
CVSS v2 : unknown
v3 : 7.5
v2 : unknown
v3 : 8.1
References () https://patchstack.com/database/vulnerability/kali-forms/wordpress-kali-forms-plugin-2-3-38-insecure-direct-object-references-idor-vulnerability?_s_id=cve - () https://patchstack.com/database/vulnerability/kali-forms/wordpress-kali-forms-plugin-2-3-38-insecure-direct-object-references-idor-vulnerability?_s_id=cve - Third Party Advisory
CPE cpe:2.3:a:kaliforms:kali_forms:*:*:*:*:*:wordpress:*:*
First Time Kaliforms
Kaliforms kali Forms

31 Jan 2024, 12:16

Type Values Removed Values Added
New CVE

Information

Published : 2024-01-31 12:16

Updated : 2024-11-21 08:56


NVD link : CVE-2024-22305

Mitre link : CVE-2024-22305

CVE.ORG link : CVE-2024-22305


JSON object : View

Products Affected

kaliforms

  • kali_forms
CWE
CWE-639

Authorization Bypass Through User-Controlled Key