Josh Crawford
2 exploits
Active since May 2024
Formie: Pre-authenticated server-side template injection in Hidden fields
CVSS 9.8
Formie < 2.0.44 and 2.1.0-2.1.5 - Authenticated Server-Side Template Injection via Submission Title or Success Message
CVSS 4.4