CVSS 3.1 Score 7.1 of 10 (high)


Published Oct 2, 2023
Updated: Oct 4, 2023


CVE-2023-44474 is a vulnerability associated with the MD Jakir Hosen Tiger Forms – Drag and Drop Form Builder plugin, affecting versions <= 2.0.0. The vulnerability is categorized as an Unauthenticated Reflected Cross-Site Scripting (XSS) vulnerability. It has a risk score of 25 and a base severity rating of HIGH. The exploitability score is 2.8, and it requires user interaction over a network. The impact on integrity and confidentiality is low, as well as the availability impact. The CWE-ID associated with this vulnerability is CWE-79, which refers to the improper neutralization of input during web page generation (Cross-Site Scripting). No specific remediation steps or potential dangers to organizations are mentioned in the provided information.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-44474 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options