Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:16 a.m.4 views

CVE-2025-13496

The Moosend Landing Pages plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the moosendlandingsauthget function in all versions up to, and including, 1.1.6. This makes it possible for authenticated attackers, with Subscriber-level access...

5.3CVSS5.1AI score0.00277EPSS
Exploits0References1
CVE
CVE
added 2026/01/07 8:21 a.m.28 views

CVE-2025-13496

CVE-2025-13496 (Moosend Landing Pages, WordPress) The WordPress plugin Moosend Landing Pages (up to v1.1.6) contains a missing capability check in moosend_landings_auth_get, allowing authenticated users with Subscriber level access or higher to delete the moosend_landing_api_key option. The issue...

5.3CVSS4.7AI score0.00277EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/01/07 8:21 a.m.30 views

CVE-2025-13496 Moosend Landing Pages <= 1.1.6 - Missing Authorization to Authenticated (Subscriber+) Option Deletion

The Moosend Landing Pages plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the moosendlandingsauthget function in all versions up to, and including, 1.1.6. This makes it possible for authenticated attackers, with Subscriber-level access...

5.3CVSS0.00277EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/01/07 8:21 a.m.3 views

CVE-2025-13496 Moosend Landing Pages <= 1.1.6 - Missing Authorization to Authenticated (Subscriber+) Option Deletion

The Moosend Landing Pages plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the moosendlandingsauthget function in all versions up to, and including, 1.1.6. This makes it possible for authenticated attackers, with Subscriber-level access...

5.3CVSS4.7AI score0.00277EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/01/07 12:0 a.m.5 views

WordPress plugin Moosend Landing Pages 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

5.3CVSS6.3AI score0.00277EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/01/07 12:0 a.m.7 views

PT-2026-1589

Name of the Vulnerable Software and Affected Versions Moosend Landing Pages plugin for WordPress versions through 1.1.6 Description The Moosend Landing Pages plugin for WordPress has a flaw that allows unauthorized modification of data. This is due to a missing capability check within the moosend...

5.3CVSS6.4AI score0.00277EPSS
Exploits0References5
Patchstack
Patchstack
added 2026/01/06 10:31 p.m.7 views

WordPress Moosend Landing Pages plugin <= 1.1.6 - Missing Authorization to Authenticated (Subscriber+) Option Deletion vulnerability

Missing Authorization to Authenticated Subscriber+ Option Deletion vulnerability discovered by Legion Hunter in WordPress Plugin Moosend Landing Pages versions = 1.1.6...

5.3CVSS6.8AI score0.00277EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder