Show filters
5 Total Results
Displaying 1-5 of 5
Sort by:
Attacker Value
Unknown

CVE-2025-22504

Disclosure Date: January 09, 2025 (last updated January 10, 2025)
Unrestricted Upload of File with Dangerous Type vulnerability in jumpdemand 4ECPS Web Forms allows Upload a Web Shell to a Web Server.This issue affects 4ECPS Web Forms: from n/a through 0.2.18.
0
0
Attacker Value
Unknown

CVE-2024-35638

Disclosure Date: June 03, 2024 (last updated June 03, 2024)
Cross-Site Request Forgery (CSRF) vulnerability in JumpDEMAND Inc. ActiveDEMAND.This issue affects ActiveDEMAND: from n/a through 0.2.43.
0
0
Attacker Value
Unknown

CVE-2024-32809

Disclosure Date: May 17, 2024 (last updated May 17, 2024)
Unrestricted Upload of File with Dangerous Type vulnerability in JumpDEMAND Inc. ActiveDEMAND allows Using Malicious Files.This issue affects ActiveDEMAND: from n/a through 0.2.41.
0
0
Attacker Value
Unknown

CVE-2022-44628

Disclosure Date: November 02, 2022 (last updated February 24, 2025)
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in JumpDEMAND Inc. 4ECPS Web Forms plugin <= 0.2.17 on WordPress.
Attack Vector: NetworkPrivileges: HighUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2022-36296

Disclosure Date: August 02, 2022 (last updated February 24, 2025)
Broken Authentication vulnerability in JumpDEMAND Inc. ActiveDEMAND plugin <= 0.2.27 at WordPress allows unauthenticated post update/create/delete.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0