45 matches found
Cross site scripting
The icegram plugin before 1.10.29 for WordPress has igcatlist XSS...
CVE-2019-15830
The icegram plugin before 1.10.29 for WordPress has igcatlist XSS...
PT-2019-14419 · WordPress · Icegram Plugin
Name of the Vulnerable Software and Affected Versions: icegram plugin versions prior to 1.10.29 for WordPress Description: The issue is related to an ig cat list XSS in the icegram plugin for WordPress. Recommendations: For versions prior to 1.10.29, update to version 1.10.29 or later to resolve...
CVE-2019-13569
A SQL injection vulnerability exists in the Icegram Email Subscribers & Newsletters plugin through 4.1.7 for WordPress. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...
Sql injection
A SQL injection vulnerability exists in the Icegram Email Subscribers & Newsletters plugin through 4.1.7 for WordPress. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...