CVE-2019-14787

2019-08-0912:21:59

mitre

www.cve.org

0.001 Low

EPSS

Percentile

36.9%

JSON

The Tribulant Newsletters plugin before 4.6.19 for WordPress allows XSS via the wp-admin/admin-ajax.php?action=newsletters_load_new_editor contentarea parameter.

References

wordpress.org/plugins/newsletters-lite/#developers

wpvulndb.com/vulnerabilities/9447

www.pluginvulnerabilities.com/2019/07/01/reflected-cross-site-scripting-xss-vulnerability-in-newsletters/

0.001 Low

EPSS

Percentile

36.9%

JSON

Related for CVELIST:CVE-2019-14787