Vulnerabilities > Umbraco > Umbraco Forms

DATE CVE VULNERABILITY TITLE RISK
2023-02-24 CVE-2021-33224 Unrestricted Upload of File with Dangerous Type vulnerability in Umbraco Forms 8.7.0
File upload vulnerability in Umbraco Forms v.8.7.0 allows unauthenticated attackers to execute arbitrary code via a crafted web.config and asp file.
network
low complexity
umbraco CWE-434
critical
 9.8
9.8
2020-07-28 CVE-2020-7685 Insecure Default Initialization of Resource vulnerability in Umbraco Forms
This affects all versions of package UmbracoForms.
network
low complexity
umbraco CWE-1188
7.5
7.5