Reputeinfosystems: >> Arforms Security Vulnerabilities
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Repute info systems ARForms.This issue affects ARForms: from n/a through 6.4.
CVSS Score
8.5
EPSS Score
0.001
Published
2024-04-24
In the ARforms plugin 3.7.1 for WordPress, arf_delete_file in arformcontroller.php allows unauthenticated deletion of an arbitrary file by supplying the full pathname.
CVSS Score
7.5
EPSS Score
0.147
Published
2019-09-27
Page 2