50 matches found
EUVD-2021-11048
Malware in sbrugna...
EUVD-2023-38467
Malicious code in bioql PyPI...
EUVD-2023-49939
Malicious code in bioql PyPI...
EUVD-2024-19733
Malicious code in bioql PyPI...
EUVD-2023-56881
Malicious code in bioql PyPI...
CVE-2023-34387
Missing Authorization vulnerability in Constant Contact Constant Contact Forms allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Constant Contact Forms: from n/a through 2.0.3...
CVE-2023-52208
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Constant Contact Constant Contact Forms.This issue affects Constant Contact Forms: from n/a through 2.4.2...
CVE-2021-24134
Unvalidated input and lack of output encoding in the Constant Contact Forms WordPress plugin, versions before 1.8.8, lead to multiple Stored Cross-Site Scripting vulnerabilities, which allowed high-privileged user Editor+ to inject arbitrary JavaScript code or HTML in posts where the malicious fo...
CVE-2023-34387
Missing Authorization vulnerability in Constant Contact Constant Contact Forms constant-contact-forms allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Constant Contact Forms: from n/a through = 2.0.3...
CVE-2023-34387
Missing Authorization vulnerability in Constant Contact Constant Contact Forms allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Constant Contact Forms: from n/a through 2.0.3...
CVE-2023-34387 WordPress Constant Contact Forms plugin <= 2.0.3 - Broken Access Control vulnerability
Missing Authorization vulnerability in Constant Contact Constant Contact Forms allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Constant Contact Forms: from n/a through 2.0.3...
WordPress plugin Constant Contact Forms 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A security vulnerability exists in...
CVE-2024-9614
The Constant Contact Forms by MailMunch plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 2.1.2. This makes it possible for unauthenticated attackers to inject arbitrary...
CVE-2024-9614 Constant Contact Forms by MailMunch <= 2.1.2 - Reflected Cross-Site Scripting
The Constant Contact Forms by MailMunch plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 2.1.2. This makes it possible for unauthenticated attackers to inject arbitrary...
CVE-2024-9614 Constant Contact Forms by MailMunch <= 2.1.2 - Reflected Cross-Site Scripting
The Constant Contact Forms by MailMunch plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 2.1.2. This makes it possible for unauthenticated attackers to inject arbitrary...
CVE-2024-9614
CVE-2024-9614 affects the WordPress plugin Constant Contact Forms by MailMunch. It is a Reflected Cross-Site Scripting (XSS) vulnerability caused by improper escaping in add_query_arg across all versions up to 2.1.2. Unauthenticated attackers can induce user-visible script execution by tricking a...
WordPress plugin Constant Contact Forms by MailMunch 跨站脚本漏洞
WordPress and WordPress plugin are products of the WordPress Foundation, a blogging platform developed in PHP. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site scripting vulnerability exists in the WordPress plugin Constant Contact...
PT-2024-39719 · Mailmunch · Constant Contact Forms By Mailmunch
Name of the Vulnerable Software and Affected Versions: Constant Contact Forms by MailMunch plugin for WordPress versions up to, and including, 2.1.2 Description: The issue arises from the use of add query arg without proper escaping on the URL, allowing unauthenticated attackers to inject arbitra...
WordPress Constant Contact Forms by MailMunch plugin <= 2.1.2 - Reflected Cross-Site Scripting vulnerability
Reflected Cross-Site Scripting vulnerability discovered by vgo0 in WordPress Plugin Constant Contact Forms by MailMunch versions = 2.1.2...
WordPress Constant Contact Forms by MailMunch Plugin <= 2.1.2 is vulnerable to Cross Site Scripting (XSS)
Software Constant Contact Forms by MailMunch Type Plugin Vulnerable versions = 2.1.2 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-9614 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 53dd5edc8197 Credits...