Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Basix NEX-Forms – Ultimate Form Builder allows Reflected XSS.This issue affects NEX-Forms – Ultimate Form Builder: from n/a through 8.7.3.
Metrics
Affected Vendors & Products
| Vendors | Products |
|---|---|
| Basixonline |
|
No data.
References
History
Wed, 22 Jan 2025 22:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Basixonline
Basixonline nex-forms |
|
| CPEs | cpe:2.3:a:basixonline:nex-forms:*:*:*:*:*:wordpress:*:* | |
| Vendors & Products |
Basixonline
Basixonline nex-forms |
Mon, 07 Oct 2024 19:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Sat, 05 Oct 2024 15:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Basix NEX-Forms – Ultimate Form Builder allows Reflected XSS.This issue affects NEX-Forms – Ultimate Form Builder: from n/a through 8.7.3. | |
| Title | WordPress NEX-Forms plugin <= 8.7.3 - Reflected Cross Site Scripting (XSS) vulnerability | |
| Weaknesses | CWE-79 | |
| References |
| |
| Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2024-10-07T13:17:10.284Z
Reserved: 2024-09-24T13:02:04.495Z
Link: CVE-2024-47389
Vulnrichment
Updated: 2024-10-07T13:17:00.639Z
NVD
Status : Analyzed
Published: 2024-10-05T15:15:15.847
Modified: 2025-01-22T22:03:18.517
Link: CVE-2024-47389
Redhat
No data.