WordPress plugin Contact Form 7 Extension For Mailchimp 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site request forgery vulnerability exists in t...

PT-2024-25432 · Unknown · Contact Form 7 Extension For Mailchimp

Name of the Vulnerable Software and Affected Versions: Contact Form 7 Extension For Mailchimp versions 0.5.70 and earlier Description: A Cross-Site Request Forgery CSRF issue has been identified. This issue allows an attacker to perform actions on behalf of a user without their knowledge or...

WordPress Contact Form 7 Extension For Mailchimp Plugin <= 0.5.70 is vulnerable to Cross Site Request Forgery (CSRF)

Software Contact Form 7 Extension For Mailchimp Type Plugin Vulnerable versions = 0.5.70 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-33677 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 0c99f758367e Credi...

MailChimp Forms by MailMunch < 3.2.2 - Cross-Site Request Forgery

Description The MailChimp Forms by MailMunch plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 3.2.1. This is due to missing or incorrect nonce validation on the integrate case. This makes it possible for unauthenticated attackers to update the...

CVE-2024-31378

Cross-Site Request Forgery CSRF vulnerability in MailMunch MailChimp Forms by MailMunch.This issue affects MailChimp Forms by MailMunch: from n/a through 3.2.1...

CVE-2024-31378

Cross-Site Request Forgery CSRF vulnerability in MailMunch MailChimp Forms by MailMunch.This issue affects MailChimp Forms by MailMunch: from n/a through 3.2.1...

CVE-2024-31378

CVE-2024-31378 is a Cross-Site Request Forgery (CSRF) vulnerability reported in MailMunch MailChimp Forms by MailMunch. Public details in connected docs indicate the affected product is MailChimp Forms by MailMunch and the issue covers versions up to 3.2.1. No exploit, root-cause, impact, or patc...

CVE-2024-31378 WordPress MailChimp Forms by MailMunch plugin <= 3.2.1 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in MailMunch MailChimp Forms by MailMunch.This issue affects MailChimp Forms by MailMunch: from n/a through 3.2.1...

PT-2024-24024 · Mailmunch · Mailchimp Forms By Mailmunch

Name of the Vulnerable Software and Affected Versions: MailChimp Forms by MailMunch versions 3.2.1 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended actions on a web...

WordPress Plugin MailChimp Forms by MailMunch 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. WordPress Plugin MailChimp Forms by MailMun...

WordPress MailChimp Forms by MailMunch plugin <= 3.2.1 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Majed Refaea Patchstack Alliance in WordPress Plugin MailChimp Forms by MailMunch versions = 3.2.1...

WordPress MailChimp Forms by MailMunch Plugin <= 3.2.1 is vulnerable to Cross Site Request Forgery (CSRF)

Software MailChimp Forms by MailMunch Type Plugin Vulnerable versions = 3.2.1 Fixed in 3.2.2 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-31378 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 6da6aad69d50 Credits Majed...

Paid Memberships Pro – Mailchimp Add On < 2.3.5 - Unauthenticated Information Disclosure

Description The Paid Memberships Pro – Mailchimp Add On plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.3.4 via log files. This makes it possible for unauthenticated attackers to extract information from log files...

MailChimp Forms by MailMunch < 3.2.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode

Description The MailChimp Forms by MailMunch plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcode in all versions up to, and including, 3.2.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

CVE-2024-30523

Insertion of Sensitive Information into Log File vulnerability in Paid Memberships Pro Paid Memberships Pro – Mailchimp Add On pmpro-mailchimp.This issue affects Paid Memberships Pro – Mailchimp Add On: from n/a through 2.3.4...

CVE-2024-30523

Technical details about CVE-2024-30523 are not provided in the supplied documents. No affected product/version or remediation steps are disclosed here; monitor for official advisories for updates.

CVE-2024-30523 WordPress Paid Memberships Pro – Mailchimp Add On plugin <= 2.3.4 - Sensitive Data Exposure vulnerability

Insertion of Sensitive Information into Log File vulnerability in Paid Memberships Pro Paid Memberships Pro – Mailchimp Add On pmpro-mailchimp.This issue affects Paid Memberships Pro – Mailchimp Add On: from n/a through 2.3.4...

CVE-2024-30523 WordPress Paid Memberships Pro – Mailchimp Add On plugin <= 2.3.4 - Sensitive Data Exposure vulnerability

Insertion of Sensitive Information into Log File vulnerability in Paid Memberships Pro Paid Memberships Pro – Mailchimp Add On pmpro-mailchimp.This issue affects Paid Memberships Pro – Mailchimp Add On: from n/a through 2.3.4...

PT-2024-23451 · Unknown · Paid Memberships Pro – Mailchimp Add On

Name of the Vulnerable Software and Affected Versions: Paid Memberships Pro – Mailchimp Add On versions through 2.3.4 Description: The issue is related to the insertion of sensitive information into log files. This could potentially expose sensitive data. Recommendations: For versions through...

WordPress Paid Memberships Pro – Mailchimp Add On Plugin <= 2.3.4 is vulnerable to Sensitive Data Exposure

Software Paid Memberships Pro – Mailchimp Add On Type Plugin Vulnerable versions = 2.3.4 Fixed in 2.3.5 OWASP Top 10 A4: Insecure Design Classification Sensitive Data Exposure CVE CVE-2024-30523 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 18b1033a7e4e Credits Muhammad...