CVE-2017-18523

The eelv-newsletter plugin before 4.6.1 for WordPress has CSRF in the address book...

CVE-2017-18522

The eelv-newsletter plugin before 4.6.1 for WordPress has XSS in the address book...

CVE-2025-23602

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Europe Ecologie Les Verts EELV Newsletter eelv-newsletter allows Reflected XSS.This issue affects EELV Newsletter: from n/a through = 4.8.2...

EUVD-2013-1037

Malware in sbrugna...

EUVD-2025-3277

Malicious code in bioql PyPI...

EUVD-2024-52550

Malicious code in bioql PyPI...

CVE-2024-54430

Cross-Site Request Forgery CSRF vulnerability in Europe Ecologie Les Verts EELV Newsletter eelv-newsletter allows Cross Site Request Forgery.This issue affects EELV Newsletter: from n/a through = 4.8.2...

CVE-2013-10028

A vulnerability was found in EELV Newsletter Plugin 2.x on WordPress. It has been rated as problematic. Affected by this issue is the function stylenewsletter of the file lettreinfo.php. The manipulation of the argument email leads to cross site scripting. The attack may be launched remotely. The...

CVE-2025-23602

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Europe Ecologie Les Verts EELV Newsletter eelv-newsletter allows Reflected XSS.This issue affects EELV Newsletter: from n/a through = 4.8.2...

CVE-2025-23602 WordPress EELV Newsletter plugin <= 4.8.2 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Europe Ecologie Les Verts EELV Newsletter eelv-newsletter allows Reflected XSS.This issue affects EELV Newsletter: from n/a through = 4.8.2...

CVE-2025-23602

CVE-2025-23602 involves NotFound EELV Newsletter (NotFound EELV Newsletter: vulnerable versions up to 4.8.2) and is a Cross-site Scripting (XSS) flaw caused by improper input neutralization during web page generation. Red Hat’s security advisory clarifies that this is a NotFound EELV Newsletter X...

CVE-2025-23602 WordPress EELV Newsletter plugin <= 4.8.2 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Europe Ecologie Les Verts EELV Newsletter eelv-newsletter allows Reflected XSS.This issue affects EELV Newsletter: from n/a through = 4.8.2...

WordPress plugin EELV Newsletter 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting vulnerability...

PT-2025-4966 · Unknown · Eelv-Newsletter

Name of the Vulnerable Software and Affected Versions: EELV Newsletter versions prior to 4.8.2 Description: The issue is related to improper neutralization of input during web page generation, also known as 'Cross-site Scripting', which allows Reflected XSS. This enables an attacker to inject...

CVE-2024-54430

Cross-Site Request Forgery CSRF vulnerability in Europe Ecologie Les Verts EELV Newsletter eelv-newsletter allows Cross Site Request Forgery.This issue affects EELV Newsletter: from n/a through = 4.8.2...

CVE-2024-54430 WordPress EELV Newsletter plugin <= 4.8.2 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Europe Ecologie Les Verts EELV Newsletter eelv-newsletter allows Cross Site Request Forgery.This issue affects EELV Newsletter: from n/a through = 4.8.2...

CVE-2024-54430

CVE-2024-54430 is a CSRF vulnerability in the EELV Newsletter WordPress plugin (EELV Newsletter) affecting versions up to 4.8.2. Reported by RH and corroborated by ENISA/Wordfence data; CVSS v3.1 base score 5.4 (Medium). Status: patch not available in the connected sources; no exploit details pro...

CVE-2024-54430 WordPress EELV Newsletter plugin <= 4.8.2 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Bastien Ho EELV Newsletter allows Cross Site Request Forgery.This issue affects EELV Newsletter: from n/a through 4.8.2...

WordPress plugin EELV Newsletter 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A cross-site request forgery...

WordPress EELV Newsletter plugin <= 4.8.2 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by thiennv Patchstack Alliance in WordPress Plugin EELV Newsletter versions = 4.8.2...