Lucene search
PatchstackCVE-2024-31270HistoryMay 08, 2024 - 2:15 p.m.
CVE-2024-31270
2024-05-0814:15:08
CWE-862
Patchstack
web.nvd.nist.gov
37
authorization
vulnerability
repute infosystems
CVSS3
7.6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L
AI Score
9.3
Confidence
High
EPSS
0
Percentile
9.0%
Missing Authorization vulnerability in Repute InfoSystems ARForms Form Builder.This issue affects ARForms Form Builder: from n/a through 1.6.1.
Affected configurations
Node
repute_infosystemsarforms_form_builderRange≤1.6.1wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| repute_infosystems | arforms_form_builder | * | cpe:2.3:a:repute_infosystems:arforms_form_builder:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "arforms-form-builder",
"product": "ARForms Form Builder",
"vendor": "Repute InfoSystems",
"versions": [
{
"changes": [
{
"at": "1.6.2",
"status": "unaffected"
}
],
"lessThanOrEqual": "1.6.1",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2024-31270
2024-05-08 14:15:08
vulnrichment
vulnrichment
wpvulndb
wpvulndb
ARForms Form Builder < 1.6.2 - Missing Authorization
2024-04-11 00:00:00
cvelist
cvelist
wordfence
wordfence
CVSS3
7.6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L
AI Score
9.3
Confidence
High
EPSS
0
Percentile
9.0%
Related for CVE-2024-31270