Filtered by vendor Barrelstrengthdesign Subscriptions
Filtered by product Sprout Forms Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2020-11056 1 Barrelstrengthdesign 1 Sprout Forms 2024-11-21 7.4 High
In Sprout Forms before 3.9.0, there is a potential Server-Side Template Injection vulnerability when using custom fields in Notification Emails which could lead to the execution of Twig code. This has been fixed in 3.9.0.