Every CVE whose affected-product data names Forms Project Forms, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2017-16015 — CVSS 6.1 (medium): Forms is a library for easily creating HTML forms. Versions before 1.3.0 did not have proper html escaping. This means that if the…
CVE-2021-23388 — CVSS 5.3 (medium): The package forms before 1.2.1, from 1.3.0 and before 1.3.2 are vulnerable to Regular Expression Denial of Service (ReDoS) via email…