Umbracoforms
This hub aggregates every CVE we track for Umbracoforms, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
6
CVEs tracked
0
Critical
1
High
0
In CISA KEV
Severity distribution
MEDIUM4LOW1HIGH1
Monthly trend
0
0
0
0
0
0
1
0
0
0
1
0
0
0
0
0
0
0
2
0
0
0
0
0
2024-072026-06
Latest CVEs
The 6 most recently published vulnerabilities affecting Umbracoforms.
- CVE-2026-24687Umbraco.Forms has path traversal and file enumeration vulnerability in Linux/Mac6.5
- CVE-2025-68924In Umbraco UmbracoForms through 8.13.16, an authenticated attacker can supply a malicious WSDL (aka Webservice) URL as a data source for remote code execution.7.5
- CVE-2025-47280Umbraco.Forms has HTML injection vulnerability in 'Send email' workflow6.1
- CVE-2025-23041Short and Long Answer Fields Are Not Validated Server-Side For Maximum Length in Umbraco.Forms5.8
- CVE-2024-35239Stored Cross-site Scripting on Components of Umbraco Forms2.7
- CVE-2020-7685Insecure Defaults5.4
Product normalization is registry-driven with AI assist and human review. How it works