Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-1412

Malware in sbrugna...

6.1CVSS6.3AI score0.01224EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2025-21667

Malicious code in bioql PyPI...

4.3CVSS6.5AI score0.00128EPSS
Exploits0References1
CVE
CVE
added 2025/08/20 8:2 a.m.17 views

CVE-2025-54034

CVE-2025-54034 corresponds to a Local File Inclusion in WordPress Newsletters (Tribulant Software Newsletters) up to version 4.10. The issue arises from improper control of the filename used in include/require, enabling local file inclusion. CVSS v3.1 base score 7.5 (HIGH) with attack vector NETW...

7.5CVSS5.9AI score0.00423EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/05/13 12:0 a.m.4 views

PT-2025-20834 · WordPress · Newsletters

Name of the Vulnerable Software and Affected Versions: Newsletters plugin for WordPress versions up to and including 4.9.9.8 Description: The issue allows authenticated attackers with Contributor-level access or higher to inject additional SQL queries into existing ones, potentially extracting...

6.5CVSS7.1AI score0.0034EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2025/02/05 5:13 p.m.10 views

CVE-2019-20361

There was a flaw in the WordPress plugin, Email Subscribers & Newsletters before 4.3.1, that allowed SQL statements to be passed to the database in the hash parameter a blind SQL injection vulnerability...

9.8CVSS7.5AI score0.8511EPSS
Exploits7References1
RedhatCVE
RedhatCVE
added 2025/02/05 7:2 a.m.7 views

CVE-2024-32953

Insertion of Sensitive Information into Log File vulnerability in Newsletters.This issue affects Newsletters: from n/a through 4.9.5...

7.5CVSS5.2AI score0.0068EPSS
Exploits0References1
OSV
OSV
added 2024/06/09 6:15 p.m.3 views

CVE-2024-31352

Missing Authorization vulnerability in Email Subscribers & Newsletters.This issue affects Email Subscribers & Newsletters: from n/a through 5.7.13...

9.8CVSS7.3AI score0.00386EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/04/24 12:0 a.m.4 views

WordPress plugin Newsletters 日志信息泄露漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A log information disclosur...

7.5CVSS6.3AI score0.0068EPSS
Exploits0References2
Exploit DB
Exploit DB
added 2006/10/04 12:0 a.m.17 views

osCommerce 2.2 - '/admin/newsletters.php?page' Cross-Site Scripting

source: https://www.securityfocus.com/bid/20343/info osCommerce is prone to multiple cross-site scripting vulnerabilities. An attacker may leverage this issue to have arbitrary script code execute in the browser of an unsuspecting user in the context of the affected site. This may help the attack...

7.4AI score
Exploits0
Rows per page
Query Builder