verbb/formie Security Advisories for 2.0.0-beta.1 (3)
-
[MEDIUM] Formie has XSS vulnerability for email notification content for preview
PKSA-q8g8-6f85-c3mh CVE-2025-32426 GHSA-2xm2-23ff-p8ww
Affected version: <=2.1.43
Reported by:
GitHub -
[MEDIUM] Formie has XSS vulnerability for importing forms
PKSA-m8j6-b24d-gz5q CVE-2025-32427 GHSA-p9hh-mh5x-wvx3
Affected version: <=2.1.43
Reported by:
GitHub -
[MEDIUM] verbb/formie Server-Side Template Injection for variable-enabled settings
PKSA-vzbr-51wf-rdg1 CVE-2024-35191 GHSA-v45m-hxqp-fwf5
Affected version: <2.1.6
Reported by:
GitHub