Product
rednao smart forms
9 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2023-49856
CVE-2024-33593
CVE-2024-1905
CVE-2024-1307
CVE-2024-1306
CVE-2023-7203
CVE-2022-0163
CVE-2019-5924
CVE-2018-9920
< 2.6.85
Missing Authorization vulnerability in EDGARROJAS Smart Forms smart-forms allows Exploiting Incorrectly Configured Access Control
< 2.6.92
Missing Authorization vulnerability in RedNao Smart Forms.This issue affects Smart Forms: from n/a through 2.6.91.
< 2.6.96
The Smart Forms WordPress plugin before 2.6.96 does not sanitise and escape some of its settings, which could allow high privileg
< 2.6.94
The Smart Forms WordPress plugin before 2.6.94 does not have proper authorization in some actions, which could allow users with a
< 2.6.94
The Smart Forms WordPress plugin before 2.6.94 does not have CSRF checks in some places, which could allow attackers to make logg
< 2.6.87
The Smart Forms WordPress plugin before 2.6.87 does not have authorisation in various AJAX actions, which could allow users with a
< 2.6.71
The Smart Forms WordPress plugin before 2.6.71 does not have authorisation in its rednao_smart_forms_entries_list AJAX action, all
<= 2.6.15
Cross-site request forgery (CSRF) vulnerability in Smart Forms 2.6.15 and earlier allows remote attackers to hijack the authentica
all versions
Server side request forgery exists in the runtime application in K2 smartforms 4.6.11 via a modified hostname in an https://*/Iden