Giuseppe Criscione

4 exploits Active since Jun 2024
CVE-2024-37160 WRITEUP MEDIUM WRITEUP
Formwork < 1.13.1 - Authenticated Stored Cross-Site Scripting via Site Options
Formwork is a flat file-based Content Management System (CMS). An attackers (requires administrator privilege) to execute arbitrary web scripts by modifying site options via /panel/options/site. This type of attack is suitable for persistence, affecting visitors across all pages (except the dashboard). This vulnerability is fixed in 1.13.1.
CVSS 4.8
CVE-2026-27198 WRITEUP HIGH WRITEUP
Formwork 2.0.0-2.3.3 - Privilege Escalation
Formwork is a flat file-based Content Management System (CMS). In versions 2.0.0 through 2.3.3, the application fails to properly enforce role-based authorization during account creation. Although the system validates that the specified role exists, it does not verify whether the current user has sufficient privileges to assign highly privileged roles such as admin. As a result, an authenticated user with the editor role can create a new account with administrative privileges, leading to full administrative access and complete compromise of the CMS. This issue has been fixed in version 2.3.4.
CVSS 8.8
CVE-2024-37160 WRITEUP MEDIUM WRITEUP
Formwork < 1.13.1 - Authenticated Stored Cross-Site Scripting via Site Options
Formwork is a flat file-based Content Management System (CMS). An attackers (requires administrator privilege) to execute arbitrary web scripts by modifying site options via /panel/options/site. This type of attack is suitable for persistence, affecting visitors across all pages (except the dashboard). This vulnerability is fixed in 1.13.1.
CVSS 4.8
CVE-2025-65956 WRITEUP MEDIUM WRITEUP
Formwork < 2.2.0 - Stored Cross-Site Scripting in Blog Tag Field
Formwork is a flat file-based Content Management System (CMS). Prior to version 2.2.0, inserting unsanitized data into the blog tag field results in stored cross‑site scripting (XSS). Any user with credentials to the Formwork CMS who accesses or edits an affected blog post will have attacker‑controlled script executed in their browser. The issue is persistent and impacts privileged administrative workflows. This issue has been patched in version 2.2.0.
CVSS 6.5