← Back

Smartforms

smartforms

Vendor: K2 • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2018-9920
1K2
1Smartforms
Nov 21, 2024
May 24, 2018
N/A· v4
6.5 MEDIUM· v3
6.4 MEDIUM· v2
Server side request forgery exists in the runtime application in K2 smartforms 4.6.11 via a modified hostname in an https://*/Identity/STS/Forms/Scripts URL.