← Back

Infusionsoft Gravity Forms

infusionsoft_gravity_forms

Vendor: Infusionsoft Gravity Forms Project • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2014-6446
1Infusionsoft Gravity Forms Project
1Infusionsoft Gravity Forms
May 6, 2026
Sep 26, 2014
N/A· v4
N/A· v3
7.5 HIGH· v2
The Infusionsoft Gravity Forms plugin 1.5.3 through 1.5.10 for WordPress does not properly restrict access, which allows remote attackers to upload arbitrary files and execute arbitrary PHP code via a request to utilitie...Show more
The Infusionsoft Gravity Forms plugin 1.5.3 through 1.5.10 for WordPress does not properly restrict access, which allows remote attackers to upload arbitrary files and execute arbitrary PHP code via a request to utilities/code_generator.php.Show less