Lucene search
K

56 matches found

CNNVD
CNNVD
added 2024/03/27 12:0 a.m.5 views

WordPress Plugin MailChimp Forms by MailMunch 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...

6.5CVSS7AI score0.00357EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/03/25 12:0 a.m.13 views

WordPress MailChimp Forms by MailMunch Plugin <= 3.2.2 is vulnerable to Cross Site Scripting (XSS)

Software MailChimp Forms by MailMunch Type Plugin Vulnerable versions = 3.2.2 Fixed in 3.2.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-29793 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID b65cb3b63fe6 Credits Ngô Thiên An ancorn from...

6.5CVSS6.9AI score0.00357EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2023/10/16 11:15 a.m.3 views

CVE-2023-45748

Cross-Site Request Forgery CSRF vulnerability in MailMunch MailChimp Forms by MailMunch plugin = 3.1.4 versions...

8.8CVSS7.3AI score0.00214EPSS
Exploits0References1
NVD
NVD
added 2023/10/16 11:15 a.m.13 views

CVE-2023-45748

Cross-Site Request Forgery CSRF vulnerability in MailMunch MailChimp Forms by MailMunch plugin = 3.1.4 versions...

8.8CVSS5.8AI score0.00214EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/10/16 10:1 a.m.18 views

CVE-2023-45748 WordPress MailChimp Forms by MailMunch Plugin <= 3.1.4 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in MailMunch MailChimp Forms by MailMunch plugin = 3.1.4 versions...

4.3CVSS7.1AI score0.00214EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/10/16 10:1 a.m.13 views

CVE-2023-45748 WordPress MailChimp Forms by MailMunch Plugin <= 3.1.4 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in MailMunch MailChimp Forms by MailMunch plugin = 3.1.4 versions...

4.3CVSS9AI score0.00214EPSS
Exploits0References1
CVE
CVE
added 2023/10/16 10:1 a.m.55 views

CVE-2023-45748

CVE-2023-45748 affects the MailMunch MailChimp Forms by MailMunch WordPress plugin, vulnerable in versions

8.8CVSS6.4AI score0.00214EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2023/10/16 12:0 a.m.5 views

WordPress Plugin MailChimp Forms by MailMunch Cross-Site Request Forgery Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. WordPress Plugin MailChimp Forms by MailMun...

8.8CVSS6.5AI score0.00214EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/10/16 12:0 a.m.7 views

PT-2023-29664 · Mailmunch · Mailchimp Forms By Mailmunch

Name of the Vulnerable Software and Affected Versions: MailMunch MailChimp Forms by MailMunch plugin versions = 3.1.4 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended...

8.8CVSS8.8AI score0.00214EPSS
Exploits0References3
Patchstack
Patchstack
added 2023/10/12 12:0 a.m.11 views

WordPress MailChimp Forms by MailMunch Plugin <= 3.1.4 is vulnerable to Cross Site Request Forgery (CSRF)

Software MailChimp Forms by MailMunch Type Plugin Vulnerable versions = 3.1.4 Fixed in 3.1.5 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-45748 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID b4559bd74066 Credits Abdi...

8.8CVSS6.6AI score0.00214EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2023/08/11 12:0 a.m.18 views

WordPress MailChimp Forms by MailMunch Plugin <= 3.1.4 is vulnerable to Broken Access Control

Software MailChimp Forms by MailMunch Type Plugin Vulnerable versions = 3.1.4 Fixed in 3.1.5 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-40203 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 1430c7736a5b Credits István Márton...

6.3AI score0.0056EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2023/05/30 12:0 a.m.8 views

PT-2023-19962 · WordPress · Easy Forms For Mailchimp

Name of the Vulnerable Software and Affected Versions: Easy Forms for Mailchimp WordPress plugin versions prior to 6.8.9 Description: The issue is related to a Reflected Cross-Site Scripting problem. It occurs when the debug option is enabled, and a parameter is not properly sanitised and escaped...

6.1CVSS6.5AI score0.01092EPSS
Exploits2References5
wpexploit
wpexploit
added 2023/05/22 12:0 a.m.144 views

Easy Forms for Mailchimp < 6.8.9 - Reflected XSS

The plugin does not sanitise and escape a parameter before outputting it back in the page when the debug option is enabled, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin. When the debug settings is enabled ie...

6.1CVSS5.8AI score0.01092EPSS
Exploits2
Prion
Prion
added 2014/09/26 9:55 p.m.11 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Easy MailChimp Forms plugin 3.0 through 5.0.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the updateoptions action to wp-admin/admin-ajax.php...

4.3CVSS6.2AI score0.0195EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2014/09/26 9:0 p.m.46 views

CVE-2014-7152

The CVE-2014-7152 entry relates to the Easy Forms for MailChimp / Easy MailChimp Forms WordPress plugin, affecting versions 3.0 through 5.0.6. The vulnerability is an XSS flaw triggered via the update_options action to wp-admin/admin-ajax.php, allowing an attacker to inject arbitrary script or HT...

4.3CVSS6AI score0.0195EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2014/09/26 9:0 p.m.21 views

CVE-2014-7152

Cross-site scripting XSS vulnerability in the Easy MailChimp Forms plugin 3.0 through 5.0.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the updateoptions action to wp-admin/admin-ajax.php...

5.8AI score0.0195EPSS
Exploits1References2
Rows per page
Query Builder