MidnightBSD

Advisories for henriquerodrigues

CVE-2024-49615

Cross-Site Request Forgery (CSRF) vulnerability in Henrique Rodrigues SafetyForms safetymails-forms allows Blind SQL Injection.This issue affects SafetyForms: from n/a through <= 1.0.0.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
audit@patchstack.com 8.2 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:L 2.8 4.7

Products Affected

Vendor Product Version
henriquerodrigues safetyforms *