High severity7.5NVD Advisory· Published Feb 16, 2022· Updated Jun 17, 2026
CVE-2022-24983
CVE-2022-24983
Description
Forms generated by JQueryForm.com before 2022-02-05 allow remote attackers to obtain the URI to any uploaded file by capturing the POST response. When chained with CVE-2022-24984, this could lead to unauthenticated remote code execution on the underlying web server. This occurs because the Unique ID field is contained in the POST response upon submitting a form.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- JQueryForm.com/JQueryForm.comdescription
- Range: <2022-02-05
Patches
Vulnerability mechanics
References
3- jqueryform.comnvdVendor Advisory
- gist.github.com/pb-nsi/4d0a1ede76d4e97083b3435f820bf560nvdThird Party Advisory
- www.nou-systems.com/cyber-securitynvdThird Party Advisory
News mentions
0No linked articles in our index yet.