📦 Opnform

This CVE describes a cross-site request forgery (CSRF) vulnerability in JhumanJ OpnForm API endpoints up to version 1.9.3. The vulnerability could allow attackers to perform unauthorized actions if th...

This vulnerability allows unauthorized access to the /show/integrations endpoint in JhumanJ OpnForm up to version 1.9.3. Attackers can exploit this missing authorization flaw to potentially access sen...

This vulnerability in JhumanJ OpnForm up to version 1.9.3 allows improper access controls via the /edit endpoint, potentially enabling unauthorized access to sensitive functions. The attack can be exe...

This CVE describes a missing authorization vulnerability in JhumanJ OpnForm's API endpoint at /custom-domains. Attackers can exploit this to perform unauthorized actions on custom domain configuration...

This vulnerability allows attackers to inject malicious scripts into the /show/submissions endpoint of JhumanJ OpnForm, leading to cross-site scripting (XSS) attacks. It affects OpnForm versions up to...

This vulnerability in JhumanJ OpnForm up to version 1.9.3 allows remote attackers to upload arbitrary files without restrictions via the /answer endpoint. This could lead to server compromise, data th...