cleantalk
Vulnerabilities and Security Researches

FormLift for Infusionsoft Web Forms, CVE-2025-31434

CVE, Research URL

CVE-2025-31434

Home page URL

Security reports for FormLift for Infusionsoft Web Forms

Application

FormLift for Infusionsoft Web Forms

Published on
Mar 28, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Adrian Tobey FormLift for Infusionsoft Web Forms allows Stored XSS. This issue affects FormLift for Infusionsoft Web Forms: from n/a through 7.5.19.
Affected versions
Min -, max 7.5.20.
Status
vulnerable
Previous vulnerability researches
FormLift for Infusionsoft Web Forms (CVE-2025-31434) , Apr 03, 2025
FormLift for Infusionsoft Web Forms (CVE-2024-38773) , Jul 23, 2024
New vulnerability
Custom Posts Order (CVE-2025-32645) , Apr 11, 2025
Popping Content Light (CVE-2025-32115) , Apr 11, 2025
Social Crowd (CVE-2025-31390) , Apr 11, 2025
Review Stream (CVE-2025-32680) , Apr 11, 2025
MMX – Make Me Christmas (CVE-2025-31401) , Apr 11, 2025