Name: Formalms
Author: Formalms

🔍 What is Formalms?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2022-27104

CRITICAL CVSS 9.8 Apr 19, 2022

CVE-2022-27104 is an unauthenticated blind SQL injection vulnerability in Forma LMS that allows attackers to execute arbitrary SQL queries without authentication. This affects all Forma LMS installati...

CVE-2021-43136

CRITICAL CVSS 9.8 Nov 10, 2021

CVE-2021-43136 is an authentication bypass vulnerability in FormaLMS learning management systems that allows attackers to gain unauthorized access to the platform without valid credentials. This affec...

CVE-2026-26744

MEDIUM CVSS 5.3 Feb 19, 2026

A user enumeration vulnerability in FormaLMS 4.1.18 and earlier allows unauthenticated attackers to determine valid usernames via the password recovery endpoint. Attackers can exploit different error ...