CVE-2024-4045

The Popup Builder by OptinMonster – WordPress Popups for Optins, Email Newsletters and Lead Generation plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘campaignid’ parameter in versions up to, and including, 2.16.1 due to insufficient input sanitization and output...

MAL-2024-12289 Malicious code in hugchats (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 172ccaf532e98b4ea6a98cdd9cb1cfb7b7f1b0efd593217f28d5a6b825edc1c1 --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign: 2024-07-adfboba Reasons based on the campaign:...

CVE-2024-4045

The Popup Builder by OptinMonster – WordPress Popups for Optins, Email Newsletters and Lead Generation plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘campaignid’ parameter in versions up to, and including, 2.16.1 due to insufficient input sanitization and output...

Octeth Oempro SQL Injection Vulnerability

Octeth Oempro is a suite of email marketing software from Octeth USA. An SQL injection vulnerability exists in the 'CampaignID' parameter of Campaign.Get in Octeth Oempro version 4.7. The vulnerability stems from a lack of validation of externally entered SQL statements in database-based...

PT-2019-15940 · Octeth · Octeth Oempro

Name of the Vulnerable Software and Affected Versions: Octeth Oempro versions 4.7 through 4.8 Description: The issue allows SQL injection. The parameter CampaignID in the Campaign.Get endpoint is vulnerable. Recommendations: For versions 4.7 and 4.8, avoid using the CampaignID parameter in the...