cleantalk
Vulnerabilities and Security Researches

FormLift for Infusionsoft Web Forms, CVE-2024-38773

CVE, Research URL

CVE-2024-38773

Home page URL

Security reports for FormLift for Infusionsoft Web Forms

Application

FormLift for Infusionsoft Web Forms

Published on
Jul 22, 2024
Research Description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Adrian Tobey FormLift for Infusionsoft Web Forms allows Blind SQL Injection.This issue affects FormLift for Infusionsoft Web Forms: from n/a through 7.5.17.
Affected versions
Min -, max 7.5.18.
Status
vulnerable
Previous vulnerability researches
FormLift for Infusionsoft Web Forms (CVE-2025-31434) , Apr 03, 2025
FormLift for Infusionsoft Web Forms (CVE-2024-38773) , Jul 23, 2024
New vulnerability
Custom Posts Order (CVE-2025-32645) , Apr 11, 2025
Popping Content Light (CVE-2025-32115) , Apr 11, 2025
Social Crowd (CVE-2025-31390) , Apr 11, 2025
Review Stream (CVE-2025-32680) , Apr 11, 2025
MMX – Make Me Christmas (CVE-2025-31401) , Apr 11, 2025