Lucene search

K
cvelistPatchstackCVELIST:CVE-2022-46821
HistoryNov 07, 2023 - 4:47 p.m.

CVE-2022-46821 WordPress Emails & Newsletters with Jackmail Plugin <= 1.2.22 is vulnerable to CSV Injection

2023-11-0716:47:17
CWE-1236
Patchstack
www.cve.org
wordpress
jackmail
vulnerable
csv injection

8.9 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

19.3%

Improper Neutralization of Formula Elements in a CSV File vulnerability in Jackmail & Sarbacane Emails & Newsletters with Jackmail.This issue affects Emails & Newsletters with Jackmail: from n/a through 1.2.22.

CNA Affected

[
  {
    "collectionURL": "https://wordpress.org/plugins",
    "defaultStatus": "unaffected",
    "packageName": "jackmail-newsletters",
    "product": "Emails & Newsletters with Jackmail",
    "vendor": "Jackmail & Sarbacane",
    "versions": [
      {
        "lessThanOrEqual": "1.2.22",
        "status": "affected",
        "version": "n/a",
        "versionType": "custom"
      }
    ]
  }
]

8.9 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

19.3%

Related for CVELIST:CVE-2022-46821