CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Ninjaforms: >> Ninja Forms >> 3.8.1 Security Vulnerabilities

CVE-2024-43999

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Saturday Drive Ninja Forms allows Stored XSS.This issue affects Ninja Forms: from n/a through 3.8.11.

CVSS Score

5.9

EPSS Score

0.001

Published

2024-09-18

CVE-2024-39628

Cross-Site Request Forgery (CSRF) vulnerability in Saturday Drive Ninja Forms allows Cross Site Request Forgery.This issue affects Ninja Forms: from n/a through 3.8.6.

CVSS Score

5.4

EPSS Score

0.001

Published

2024-08-26

CVE-2024-37934

Improper Control of Generation of Code ('Code Injection') vulnerability in Saturday Drive Ninja Forms allows Code Injection.This issue affects Ninja Forms: from n/a through 3.8.4.

CVSS Score

5.4

EPSS Score

0.004

Published

2024-07-09

Page 2

Vulnerabilities

Vulnerable Software

Ninjaforms: >> Ninja Forms >> 3.8.1 Security Vulnerabilities

Products

Pricing

Contact Us