37 matches found
WordPress WP Mailster plugin <= 1.8.16.0 - SQL Injection vulnerability
SQL Injection vulnerability discovered by Lam Que Chi Patchstack Alliance in WordPress Plugin WP Mailster versions = 1.8.16.0...
WordPress WP Mailster plugin <= 1.8.16.0 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin WP Mailster versions = 1.8.16.0...
WordPress WP Mailster plugin <= 1.8.16.0 - Sensitive Data Exposure vulnerability
Sensitive Data Exposure vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin WP Mailster versions = 1.8.16.0...
WordPress WP Mailster plugin <= 1.8.16.0 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Lam Que Chi Patchstack Alliance in WordPress Plugin WP Mailster versions = 1.8.16.0...
WordPress WP Mailster plugin <= 1.8.15.0 - Reflected Cross Site Scripting (XSS) vulnerability
Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara Kinorth in WordPress Plugin WP Mailster versions = 1.8.15.0...
WordPress Mailster plugin <= 4.0.9 - Reflected Cross Site Scripting (XSS) vulnerability
Reflected Cross Site Scripting XSS vulnerability discovered by Martin Herancourt Patchstack Alliance in WordPress Plugin Mailster versions = 4.0.9...
WordPress Mailster Plugin <= 4.0.9 is vulnerable to Cross Site Scripting (XSS)
Software Mailster Type Plugin Vulnerable versions = 4.0.9 Fixed in 4.0.10 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-37433 Patch priority Medium CVSS severity Medium 7.1 Developer EverPress PSID fd696b7f3710 Credits Martin Herancourt Required privilege...
WordPress plugin Mailster 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...
Exploit for CVE-2024-32523
CVE-2024-32523-Poc CVE-2024-32523: Mailster /wp-content/plugin...
CVE-2024-30503 WordPress Mailster plugin <= 4.0.6 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in EverPress Mailster mailster.This issue affects Mailster: from n/a through = 4.0.6...
WordPress Mailster Plugin <= 4.0.6 is vulnerable to Cross Site Scripting (XSS)
Software Mailster Type Plugin Vulnerable versions = 4.0.6 Fixed in 4.0.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-30503 Patch priority Medium CVSS severity Medium 7.1 Developer EverPress PSID 3aa28982f4b8 Credits Rafie Muhammad Patchstack Required privilege...
WordPress Mailster plugin <= 2.4.8 - Stored Cross-Site Scripting (XSS) vulnerability
Stored Cross-Site Scripting XSS vulnerability found by Thierry Viaccoz in WordPress Mailster plugin versions = 2.4.8. Solution Update the WordPress Mailster plugin to the latest available version at least 2.4.9...
Mailster Gravity Forms < 2.4.9 - Unauthenticated Stored Cross-Site Scripting (XSS)
Mailster 1 is a newsletter plugin for WordPress. It allows to create, send and track the newsletter campaigns. Compass Security identified a stored Cross-Site Scripting XSS vulnerability affecting the administration interface. Successful exploitation requires no authentication and can be performe...
CVE-2017-17451
The WP Mailster plugin before 1.5.5 for WordPress has XSS in the unsubscribe handler via the mes parameter to view/subscription/unsubscribe2.php...
CVE-2017-17451
The WP Mailster plugin before 1.5.5 for WordPress has XSS in the unsubscribe handler via the mes parameter to view/subscription/unsubscribe2.php...
WordPress WP Mailster Plugin Cross-Site Scripting Vulnerability
WP Mailster is a WordPress plugin that allows your users to be part of a group and communicate via email without having to log into your website. A cross-site scripting vulnerability exists in the unsubscription handler in the WordPress plugin WP Mailster before 1.5.5. An attacker can exploit thi...
CVE-2017-17451
The WP Mailster plugin before 1.5.5 for WordPress has XSS in the unsubscribe handler via the mes parameter to view/subscription/unsubscribe2.php...