cleantalk
Vulnerabilities and Security Researches

Vulnerabilities and security researches forauto-advance-for-gravity-forms auto-advance-for-gravity-forms

Direction: ascending
Jun 07, 2024

Multi Page Auto Advance for Gravity Forms # 37f36b00350ea209f5fce5d4ab9d29b6e6dfd1c7

CVE, Research URL

37f36b00350ea209f5fce5d4ab9d29b6e6dfd1c7

Home page URL

Security reports for Multi Page Auto Advance for Gravity Forms

Application

Multi Page Auto Advance for Gravity Forms

Date
Feb 28, 2022
Research Description
Multi Page Auto Advance for Gravity Forms [auto-advance-for-gravity-forms] < 4.3 WordPress Multi Page Auto Advance for Gravity Forms plugin <= 4.2 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability discovered in WordPress Multi Page Auto Advance for Gravity Forms plugin (versions <= 4.2).
Affected versions
Min -, max -.
Status
vulnerable
Nov 15, 2024

Multi Page Auto Advance for Gravity Forms # CVE-2022-4974

CVE, Research URL

CVE-2022-4974

Home page URL

Security reports for Multi Page Auto Advance for Gravity Forms

Application

Multi Page Auto Advance for Gravity Forms

Date
Oct 16, 2024
Research Description
The Freemius SDK, as used by hundreds of WordPress plugin and theme developers, was vulnerable to Cross-Site Request Forgery and Information disclosure due to missing capability checks and nonce protection on the _get_debug_log, _get_db_option, and the _set_db_option functions in versions up to, and including 2.4.2. Any WordPress plugin or theme running a version of Freemius less than 2.4.3 is vulnerable.
Affected versions
Min -, max -.
Status
vulnerable