CVE-2024-22220

Last Modified:: 19 Feb 2024
User Level:: Administrator

Potential Form Bank vulnerability

CVE-2024-22220 describes a vulnerability where a threat actor could use cross-site scripting in a Form that has HTML fields.

The issue was addressed in the following Form Bank version:

2.1.11

No evidence was found of this vulnerability having been exploited. All Form Bank applications affected by this have been fully patched. No action is required by organizations using Form Bank, they will automatically use the newer patched version.