CVE-2024-47319

HIGH

Bit Apps Bit Form - Contact Form <2.13.10 - Code Injection

Title source: llm

Unrestricted Upload of File with Dangerous Type vulnerability in Bit Apps Bit Form bit-form.This issue affects Bit Form: from n/a through <= 2.13.10.

Core 2

Core References

Vdb Entry vdb-entry

Third Party Advisory

CVSS v3 8.0

EPSS 0.0059

EPSS Percentile 69.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

CWE

CWE-434

Status published

Products (2)

Bit Apps/Bit Form < 2.13.10

Bit Apps/Bit Form – Contact Form Plugin < 2.13.10

Published Oct 05, 2024

Tracked Since Feb 18, 2026