Search criteria
15 vulnerabilities found for jqueryform by jqueryform
FKIE_CVE-2022-24984
Vulnerability from fkie_nvd - Published: 2022-02-16 22:15 - Updated: 2024-11-21 06:51
Severity ?
Summary
Forms generated by JQueryForm.com before 2022-02-05 (if file-upload capability is enabled) allow remote unauthenticated attackers to upload executable files and achieve remote code execution. This occurs because file-extension checks occur on the client side, and because not all executable content (e.g., .phtml or .php.bak) is blocked.
References
| URL | Tags | ||
|---|---|---|---|
| cve@mitre.org | https://JQueryForm.com | Vendor Advisory | |
| cve@mitre.org | https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560 | Third Party Advisory | |
| cve@mitre.org | https://www.nou-systems.com/cyber-security | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://JQueryForm.com | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.nou-systems.com/cyber-security | Third Party Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| jqueryform | jqueryform | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:jqueryform:jqueryform:*:*:*:*:*:*:*:*",
"matchCriteriaId": "97DCAD44-8B31-44EB-BA9E-13DF316AD174",
"versionEndExcluding": "2022-02-05",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Forms generated by JQueryForm.com before 2022-02-05 (if file-upload capability is enabled) allow remote unauthenticated attackers to upload executable files and achieve remote code execution. This occurs because file-extension checks occur on the client side, and because not all executable content (e.g., .phtml or .php.bak) is blocked."
},
{
"lang": "es",
"value": "Los formularios generados por JQueryForm.com versiones anteriores a 05-02-2022, (si la capacidad de carga de archivos est\u00e1 habilitada) permiten a atacantes remotos no autenticados cargar archivos ejecutables y lograr una ejecuci\u00f3n de c\u00f3digo remota. Esto ocurre porque las comprobaciones de la extensi\u00f3n de los archivos son realizadas en el lado del cliente y porque no todo el contenido ejecutable (por ejemplo, .phtml o .php.bak) est\u00e1 bloqueado"
}
],
"id": "CVE-2022-24984",
"lastModified": "2024-11-21T06:51:30.513",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2022-02-16T22:15:08.030",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "https://JQueryForm.com"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://www.nou-systems.com/cyber-security"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://JQueryForm.com"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://www.nou-systems.com/cyber-security"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-434"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
FKIE_CVE-2022-24985
Vulnerability from fkie_nvd - Published: 2022-02-16 22:15 - Updated: 2024-11-21 06:51
Severity ?
Summary
Forms generated by JQueryForm.com before 2022-02-05 allows a remote authenticated attacker to bypass authentication and access the administrative section of other forms hosted on the same web server. This is relevant only when an organization hosts more than one of these forms on their server.
References
| URL | Tags | ||
|---|---|---|---|
| cve@mitre.org | https://JQueryForm.com | Vendor Advisory | |
| cve@mitre.org | https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560 | Third Party Advisory | |
| cve@mitre.org | https://www.nou-systems.com/cyber-security | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://JQueryForm.com | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.nou-systems.com/cyber-security | Third Party Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| jqueryform | jqueryform | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:jqueryform:jqueryform:*:*:*:*:*:*:*:*",
"matchCriteriaId": "97DCAD44-8B31-44EB-BA9E-13DF316AD174",
"versionEndExcluding": "2022-02-05",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Forms generated by JQueryForm.com before 2022-02-05 allows a remote authenticated attacker to bypass authentication and access the administrative section of other forms hosted on the same web server. This is relevant only when an organization hosts more than one of these forms on their server."
},
{
"lang": "es",
"value": "Los formularios generados por JQueryForm.com versiones anteriores a 05-02-2022, permiten a un atacante remoto autenticado omitir la autenticaci\u00f3n y acceder a la secci\u00f3n administrativa de otros formularios alojados en el mismo servidor web. Esto es relevante s\u00f3lo cuando una organizaci\u00f3n aloja m\u00e1s de uno de estos formularios en su servidor"
}
],
"id": "CVE-2022-24985",
"lastModified": "2024-11-21T06:51:30.660",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:S/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 6.8,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2022-02-16T22:15:08.077",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "https://JQueryForm.com"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://www.nou-systems.com/cyber-security"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://JQueryForm.com"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://www.nou-systems.com/cyber-security"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
FKIE_CVE-2022-24982
Vulnerability from fkie_nvd - Published: 2022-02-16 22:15 - Updated: 2024-11-21 06:51
Severity ?
Summary
Forms generated by JQueryForm.com before 2022-02-05 allows a remote authenticated attacker to access the cleartext credentials of all other form users. admin.php contains a hidden base64-encoded string with these credentials.
References
| URL | Tags | ||
|---|---|---|---|
| cve@mitre.org | https://JQueryForm.com | Vendor Advisory | |
| cve@mitre.org | https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560 | Third Party Advisory | |
| cve@mitre.org | https://www.nou-systems.com/cyber-security | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://JQueryForm.com | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.nou-systems.com/cyber-security | Third Party Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| jqueryform | jqueryform | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:jqueryform:jqueryform:*:*:*:*:*:*:*:*",
"matchCriteriaId": "97DCAD44-8B31-44EB-BA9E-13DF316AD174",
"versionEndExcluding": "2022-02-05",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Forms generated by JQueryForm.com before 2022-02-05 allows a remote authenticated attacker to access the cleartext credentials of all other form users. admin.php contains a hidden base64-encoded string with these credentials."
},
{
"lang": "es",
"value": "Los formularios generados por JQueryForm.com versiones anteriores a 05-02-2022, permiten a un atacante remoto autenticado acceder a las credenciales en texto sin cifrar de todos los dem\u00e1s usuarios del formulario. El archivo admin.php contiene una cadena oculta codificada en base64 con estas credenciales"
}
],
"id": "CVE-2022-24982",
"lastModified": "2024-11-21T06:51:30.207",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "NONE",
"baseScore": 4.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2022-02-16T22:15:07.927",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "https://JQueryForm.com"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://www.nou-systems.com/cyber-security"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://JQueryForm.com"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://www.nou-systems.com/cyber-security"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-522"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
FKIE_CVE-2022-24981
Vulnerability from fkie_nvd - Published: 2022-02-16 22:15 - Updated: 2024-11-21 06:51
Severity ?
Summary
A reflected cross-site scripting (XSS) vulnerability in forms generated by JQueryForm.com before 2022-02-05 allows remote attackers to inject arbitrary web script or HTML via the redirect parameter to admin.php.
References
| URL | Tags | ||
|---|---|---|---|
| cve@mitre.org | https://JQueryForm.com | Vendor Advisory | |
| cve@mitre.org | https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560 | Third Party Advisory | |
| cve@mitre.org | https://www.nou-systems.com/cyber-security | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://JQueryForm.com | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.nou-systems.com/cyber-security | Third Party Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| jqueryform | jqueryform | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:jqueryform:jqueryform:*:*:*:*:*:*:*:*",
"matchCriteriaId": "97DCAD44-8B31-44EB-BA9E-13DF316AD174",
"versionEndExcluding": "2022-02-05",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A reflected cross-site scripting (XSS) vulnerability in forms generated by JQueryForm.com before 2022-02-05 allows remote attackers to inject arbitrary web script or HTML via the redirect parameter to admin.php."
},
{
"lang": "es",
"value": "Una vulnerabilidad de tipo cross-site scripting (XSS) reflejada en los formularios generados por JQueryForm.com versiones anteriores a 05-02-2022, permite a atacantes remotos inyectar script web o HTML arbitrario por medio del par\u00e1metro redirect al archivo admin.php"
}
],
"id": "CVE-2022-24981",
"lastModified": "2024-11-21T06:51:30.027",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 2.7,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2022-02-16T22:15:07.887",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "https://JQueryForm.com"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://www.nou-systems.com/cyber-security"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://JQueryForm.com"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://www.nou-systems.com/cyber-security"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-79"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
FKIE_CVE-2022-24983
Vulnerability from fkie_nvd - Published: 2022-02-16 22:15 - Updated: 2024-11-21 06:51
Severity ?
Summary
Forms generated by JQueryForm.com before 2022-02-05 allow remote attackers to obtain the URI to any uploaded file by capturing the POST response. When chained with CVE-2022-24984, this could lead to unauthenticated remote code execution on the underlying web server. This occurs because the Unique ID field is contained in the POST response upon submitting a form.
References
| URL | Tags | ||
|---|---|---|---|
| cve@mitre.org | https://JQueryForm.com | Vendor Advisory | |
| cve@mitre.org | https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560 | Third Party Advisory | |
| cve@mitre.org | https://www.nou-systems.com/cyber-security | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://JQueryForm.com | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.nou-systems.com/cyber-security | Third Party Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| jqueryform | jqueryform | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:jqueryform:jqueryform:*:*:*:*:*:*:*:*",
"matchCriteriaId": "97DCAD44-8B31-44EB-BA9E-13DF316AD174",
"versionEndExcluding": "2022-02-05",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Forms generated by JQueryForm.com before 2022-02-05 allow remote attackers to obtain the URI to any uploaded file by capturing the POST response. When chained with CVE-2022-24984, this could lead to unauthenticated remote code execution on the underlying web server. This occurs because the Unique ID field is contained in the POST response upon submitting a form."
},
{
"lang": "es",
"value": "Los formularios generados por JQueryForm.com versiones anteriores a 05-02-2022, permiten a atacantes remotos obtener la URI de cualquier archivo subido capturando la respuesta POST. Cuando es encadenado con CVE-2022-24984, esto podr\u00eda conllevar a una ejecuci\u00f3n de c\u00f3digo remota no autenticado en el servidor web subyacente. Esto ocurre porque el campo Unique ID est\u00e1 contenido en la respuesta POST al enviar un formulario"
}
],
"id": "CVE-2022-24983",
"lastModified": "2024-11-21T06:51:30.360",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2022-02-16T22:15:07.977",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "https://JQueryForm.com"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://www.nou-systems.com/cyber-security"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://JQueryForm.com"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://www.nou-systems.com/cyber-security"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-22"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
CVE-2022-24985 (GCVE-0-2022-24985)
Vulnerability from cvelistv5 – Published: 2022-02-16 21:05 – Updated: 2024-08-03 04:29
VLAI?
Summary
Forms generated by JQueryForm.com before 2022-02-05 allows a remote authenticated attacker to bypass authentication and access the administrative section of other forms hosted on the same web server. This is relevant only when an organization hosts more than one of these forms on their server.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T04:29:01.571Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://JQueryForm.com"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.nou-systems.com/cyber-security"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Forms generated by JQueryForm.com before 2022-02-05 allows a remote authenticated attacker to bypass authentication and access the administrative section of other forms hosted on the same web server. This is relevant only when an organization hosts more than one of these forms on their server."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-02-16T21:05:25",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://JQueryForm.com"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.nou-systems.com/cyber-security"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2022-24985",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Forms generated by JQueryForm.com before 2022-02-05 allows a remote authenticated attacker to bypass authentication and access the administrative section of other forms hosted on the same web server. This is relevant only when an organization hosts more than one of these forms on their server."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://JQueryForm.com",
"refsource": "MISC",
"url": "https://JQueryForm.com"
},
{
"name": "https://www.nou-systems.com/cyber-security",
"refsource": "MISC",
"url": "https://www.nou-systems.com/cyber-security"
},
{
"name": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560",
"refsource": "MISC",
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2022-24985",
"datePublished": "2022-02-16T21:05:25",
"dateReserved": "2022-02-13T00:00:00",
"dateUpdated": "2024-08-03T04:29:01.571Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2022-24984 (GCVE-0-2022-24984)
Vulnerability from cvelistv5 – Published: 2022-02-16 21:05 – Updated: 2024-08-03 04:29
VLAI?
Summary
Forms generated by JQueryForm.com before 2022-02-05 (if file-upload capability is enabled) allow remote unauthenticated attackers to upload executable files and achieve remote code execution. This occurs because file-extension checks occur on the client side, and because not all executable content (e.g., .phtml or .php.bak) is blocked.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T04:29:01.446Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://JQueryForm.com"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.nou-systems.com/cyber-security"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Forms generated by JQueryForm.com before 2022-02-05 (if file-upload capability is enabled) allow remote unauthenticated attackers to upload executable files and achieve remote code execution. This occurs because file-extension checks occur on the client side, and because not all executable content (e.g., .phtml or .php.bak) is blocked."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-02-16T21:05:03",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://JQueryForm.com"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.nou-systems.com/cyber-security"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2022-24984",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Forms generated by JQueryForm.com before 2022-02-05 (if file-upload capability is enabled) allow remote unauthenticated attackers to upload executable files and achieve remote code execution. This occurs because file-extension checks occur on the client side, and because not all executable content (e.g., .phtml or .php.bak) is blocked."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://JQueryForm.com",
"refsource": "MISC",
"url": "https://JQueryForm.com"
},
{
"name": "https://www.nou-systems.com/cyber-security",
"refsource": "MISC",
"url": "https://www.nou-systems.com/cyber-security"
},
{
"name": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560",
"refsource": "MISC",
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2022-24984",
"datePublished": "2022-02-16T21:05:03",
"dateReserved": "2022-02-13T00:00:00",
"dateUpdated": "2024-08-03T04:29:01.446Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2022-24983 (GCVE-0-2022-24983)
Vulnerability from cvelistv5 – Published: 2022-02-16 21:04 – Updated: 2024-08-03 04:29
VLAI?
Summary
Forms generated by JQueryForm.com before 2022-02-05 allow remote attackers to obtain the URI to any uploaded file by capturing the POST response. When chained with CVE-2022-24984, this could lead to unauthenticated remote code execution on the underlying web server. This occurs because the Unique ID field is contained in the POST response upon submitting a form.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T04:29:01.655Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://JQueryForm.com"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.nou-systems.com/cyber-security"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Forms generated by JQueryForm.com before 2022-02-05 allow remote attackers to obtain the URI to any uploaded file by capturing the POST response. When chained with CVE-2022-24984, this could lead to unauthenticated remote code execution on the underlying web server. This occurs because the Unique ID field is contained in the POST response upon submitting a form."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-02-16T21:04:34",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://JQueryForm.com"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.nou-systems.com/cyber-security"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2022-24983",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Forms generated by JQueryForm.com before 2022-02-05 allow remote attackers to obtain the URI to any uploaded file by capturing the POST response. When chained with CVE-2022-24984, this could lead to unauthenticated remote code execution on the underlying web server. This occurs because the Unique ID field is contained in the POST response upon submitting a form."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://JQueryForm.com",
"refsource": "MISC",
"url": "https://JQueryForm.com"
},
{
"name": "https://www.nou-systems.com/cyber-security",
"refsource": "MISC",
"url": "https://www.nou-systems.com/cyber-security"
},
{
"name": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560",
"refsource": "MISC",
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2022-24983",
"datePublished": "2022-02-16T21:04:34",
"dateReserved": "2022-02-13T00:00:00",
"dateUpdated": "2024-08-03T04:29:01.655Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2022-24982 (GCVE-0-2022-24982)
Vulnerability from cvelistv5 – Published: 2022-02-16 21:04 – Updated: 2024-08-03 04:29
VLAI?
Summary
Forms generated by JQueryForm.com before 2022-02-05 allows a remote authenticated attacker to access the cleartext credentials of all other form users. admin.php contains a hidden base64-encoded string with these credentials.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T04:29:01.597Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://JQueryForm.com"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.nou-systems.com/cyber-security"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Forms generated by JQueryForm.com before 2022-02-05 allows a remote authenticated attacker to access the cleartext credentials of all other form users. admin.php contains a hidden base64-encoded string with these credentials."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-02-16T21:04:02",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://JQueryForm.com"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.nou-systems.com/cyber-security"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2022-24982",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Forms generated by JQueryForm.com before 2022-02-05 allows a remote authenticated attacker to access the cleartext credentials of all other form users. admin.php contains a hidden base64-encoded string with these credentials."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://JQueryForm.com",
"refsource": "MISC",
"url": "https://JQueryForm.com"
},
{
"name": "https://www.nou-systems.com/cyber-security",
"refsource": "MISC",
"url": "https://www.nou-systems.com/cyber-security"
},
{
"name": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560",
"refsource": "MISC",
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2022-24982",
"datePublished": "2022-02-16T21:04:02",
"dateReserved": "2022-02-13T00:00:00",
"dateUpdated": "2024-08-03T04:29:01.597Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2022-24981 (GCVE-0-2022-24981)
Vulnerability from cvelistv5 – Published: 2022-02-16 21:03 – Updated: 2024-08-03 04:29
VLAI?
Summary
A reflected cross-site scripting (XSS) vulnerability in forms generated by JQueryForm.com before 2022-02-05 allows remote attackers to inject arbitrary web script or HTML via the redirect parameter to admin.php.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T04:29:01.461Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://JQueryForm.com"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.nou-systems.com/cyber-security"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "A reflected cross-site scripting (XSS) vulnerability in forms generated by JQueryForm.com before 2022-02-05 allows remote attackers to inject arbitrary web script or HTML via the redirect parameter to admin.php."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-02-16T21:03:40",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://JQueryForm.com"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.nou-systems.com/cyber-security"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2022-24981",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A reflected cross-site scripting (XSS) vulnerability in forms generated by JQueryForm.com before 2022-02-05 allows remote attackers to inject arbitrary web script or HTML via the redirect parameter to admin.php."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://JQueryForm.com",
"refsource": "MISC",
"url": "https://JQueryForm.com"
},
{
"name": "https://www.nou-systems.com/cyber-security",
"refsource": "MISC",
"url": "https://www.nou-systems.com/cyber-security"
},
{
"name": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560",
"refsource": "MISC",
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2022-24981",
"datePublished": "2022-02-16T21:03:40",
"dateReserved": "2022-02-13T00:00:00",
"dateUpdated": "2024-08-03T04:29:01.461Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2022-24985 (GCVE-0-2022-24985)
Vulnerability from nvd – Published: 2022-02-16 21:05 – Updated: 2024-08-03 04:29
VLAI?
Summary
Forms generated by JQueryForm.com before 2022-02-05 allows a remote authenticated attacker to bypass authentication and access the administrative section of other forms hosted on the same web server. This is relevant only when an organization hosts more than one of these forms on their server.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T04:29:01.571Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://JQueryForm.com"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.nou-systems.com/cyber-security"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Forms generated by JQueryForm.com before 2022-02-05 allows a remote authenticated attacker to bypass authentication and access the administrative section of other forms hosted on the same web server. This is relevant only when an organization hosts more than one of these forms on their server."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-02-16T21:05:25",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://JQueryForm.com"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.nou-systems.com/cyber-security"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2022-24985",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Forms generated by JQueryForm.com before 2022-02-05 allows a remote authenticated attacker to bypass authentication and access the administrative section of other forms hosted on the same web server. This is relevant only when an organization hosts more than one of these forms on their server."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://JQueryForm.com",
"refsource": "MISC",
"url": "https://JQueryForm.com"
},
{
"name": "https://www.nou-systems.com/cyber-security",
"refsource": "MISC",
"url": "https://www.nou-systems.com/cyber-security"
},
{
"name": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560",
"refsource": "MISC",
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2022-24985",
"datePublished": "2022-02-16T21:05:25",
"dateReserved": "2022-02-13T00:00:00",
"dateUpdated": "2024-08-03T04:29:01.571Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2022-24984 (GCVE-0-2022-24984)
Vulnerability from nvd – Published: 2022-02-16 21:05 – Updated: 2024-08-03 04:29
VLAI?
Summary
Forms generated by JQueryForm.com before 2022-02-05 (if file-upload capability is enabled) allow remote unauthenticated attackers to upload executable files and achieve remote code execution. This occurs because file-extension checks occur on the client side, and because not all executable content (e.g., .phtml or .php.bak) is blocked.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T04:29:01.446Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://JQueryForm.com"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.nou-systems.com/cyber-security"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Forms generated by JQueryForm.com before 2022-02-05 (if file-upload capability is enabled) allow remote unauthenticated attackers to upload executable files and achieve remote code execution. This occurs because file-extension checks occur on the client side, and because not all executable content (e.g., .phtml or .php.bak) is blocked."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-02-16T21:05:03",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://JQueryForm.com"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.nou-systems.com/cyber-security"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2022-24984",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Forms generated by JQueryForm.com before 2022-02-05 (if file-upload capability is enabled) allow remote unauthenticated attackers to upload executable files and achieve remote code execution. This occurs because file-extension checks occur on the client side, and because not all executable content (e.g., .phtml or .php.bak) is blocked."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://JQueryForm.com",
"refsource": "MISC",
"url": "https://JQueryForm.com"
},
{
"name": "https://www.nou-systems.com/cyber-security",
"refsource": "MISC",
"url": "https://www.nou-systems.com/cyber-security"
},
{
"name": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560",
"refsource": "MISC",
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2022-24984",
"datePublished": "2022-02-16T21:05:03",
"dateReserved": "2022-02-13T00:00:00",
"dateUpdated": "2024-08-03T04:29:01.446Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2022-24983 (GCVE-0-2022-24983)
Vulnerability from nvd – Published: 2022-02-16 21:04 – Updated: 2024-08-03 04:29
VLAI?
Summary
Forms generated by JQueryForm.com before 2022-02-05 allow remote attackers to obtain the URI to any uploaded file by capturing the POST response. When chained with CVE-2022-24984, this could lead to unauthenticated remote code execution on the underlying web server. This occurs because the Unique ID field is contained in the POST response upon submitting a form.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T04:29:01.655Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://JQueryForm.com"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.nou-systems.com/cyber-security"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Forms generated by JQueryForm.com before 2022-02-05 allow remote attackers to obtain the URI to any uploaded file by capturing the POST response. When chained with CVE-2022-24984, this could lead to unauthenticated remote code execution on the underlying web server. This occurs because the Unique ID field is contained in the POST response upon submitting a form."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-02-16T21:04:34",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://JQueryForm.com"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.nou-systems.com/cyber-security"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2022-24983",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Forms generated by JQueryForm.com before 2022-02-05 allow remote attackers to obtain the URI to any uploaded file by capturing the POST response. When chained with CVE-2022-24984, this could lead to unauthenticated remote code execution on the underlying web server. This occurs because the Unique ID field is contained in the POST response upon submitting a form."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://JQueryForm.com",
"refsource": "MISC",
"url": "https://JQueryForm.com"
},
{
"name": "https://www.nou-systems.com/cyber-security",
"refsource": "MISC",
"url": "https://www.nou-systems.com/cyber-security"
},
{
"name": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560",
"refsource": "MISC",
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2022-24983",
"datePublished": "2022-02-16T21:04:34",
"dateReserved": "2022-02-13T00:00:00",
"dateUpdated": "2024-08-03T04:29:01.655Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2022-24982 (GCVE-0-2022-24982)
Vulnerability from nvd – Published: 2022-02-16 21:04 – Updated: 2024-08-03 04:29
VLAI?
Summary
Forms generated by JQueryForm.com before 2022-02-05 allows a remote authenticated attacker to access the cleartext credentials of all other form users. admin.php contains a hidden base64-encoded string with these credentials.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T04:29:01.597Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://JQueryForm.com"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.nou-systems.com/cyber-security"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Forms generated by JQueryForm.com before 2022-02-05 allows a remote authenticated attacker to access the cleartext credentials of all other form users. admin.php contains a hidden base64-encoded string with these credentials."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-02-16T21:04:02",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://JQueryForm.com"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.nou-systems.com/cyber-security"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2022-24982",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Forms generated by JQueryForm.com before 2022-02-05 allows a remote authenticated attacker to access the cleartext credentials of all other form users. admin.php contains a hidden base64-encoded string with these credentials."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://JQueryForm.com",
"refsource": "MISC",
"url": "https://JQueryForm.com"
},
{
"name": "https://www.nou-systems.com/cyber-security",
"refsource": "MISC",
"url": "https://www.nou-systems.com/cyber-security"
},
{
"name": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560",
"refsource": "MISC",
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2022-24982",
"datePublished": "2022-02-16T21:04:02",
"dateReserved": "2022-02-13T00:00:00",
"dateUpdated": "2024-08-03T04:29:01.597Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2022-24981 (GCVE-0-2022-24981)
Vulnerability from nvd – Published: 2022-02-16 21:03 – Updated: 2024-08-03 04:29
VLAI?
Summary
A reflected cross-site scripting (XSS) vulnerability in forms generated by JQueryForm.com before 2022-02-05 allows remote attackers to inject arbitrary web script or HTML via the redirect parameter to admin.php.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T04:29:01.461Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://JQueryForm.com"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.nou-systems.com/cyber-security"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "A reflected cross-site scripting (XSS) vulnerability in forms generated by JQueryForm.com before 2022-02-05 allows remote attackers to inject arbitrary web script or HTML via the redirect parameter to admin.php."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-02-16T21:03:40",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://JQueryForm.com"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.nou-systems.com/cyber-security"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2022-24981",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A reflected cross-site scripting (XSS) vulnerability in forms generated by JQueryForm.com before 2022-02-05 allows remote attackers to inject arbitrary web script or HTML via the redirect parameter to admin.php."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://JQueryForm.com",
"refsource": "MISC",
"url": "https://JQueryForm.com"
},
{
"name": "https://www.nou-systems.com/cyber-security",
"refsource": "MISC",
"url": "https://www.nou-systems.com/cyber-security"
},
{
"name": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560",
"refsource": "MISC",
"url": "https://gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2022-24981",
"datePublished": "2022-02-16T21:03:40",
"dateReserved": "2022-02-13T00:00:00",
"dateUpdated": "2024-08-03T04:29:01.461Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}