WordPress Email Marketing for WooCommerce by Omnisend plugin <= 1.18.0 - Broken Authentication vulnerability

Broken Authentication vulnerability discovered by Bima Ikhsan in WordPress Plugin Email Marketing for WooCommerce by Omnisend versions = 1.18.0...

EUVD-2024-29923

Malicious code in bioql PyPI...

EUVD-2023-51376

Malicious code in bioql PyPI...

CVE-2024-32101

Cross-Site Request Forgery CSRF vulnerability in Omnisend Email Marketing for WooCommerce by Omnisend omnisend-connect.This issue affects Email Marketing for WooCommerce by Omnisend: from n/a through = 1.14.3...

CVE-2023-47244

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Omnisend Email Marketing for WooCommerce by Omnisend.This issue affects Email Marketing for WooCommerce by Omnisend: from n/a through 1.13.8...

CVE-2024-32101

Cross-Site Request Forgery CSRF vulnerability in Omnisend Email Marketing for WooCommerce by Omnisend omnisend-connect.This issue affects Email Marketing for WooCommerce by Omnisend: from n/a through = 1.14.3...

CVE-2024-32101

CVE-2024-32101 is a CSRF vulnerability in the WordPress plugin “Email Marketing for WooCommerce by Omnisend.” Affected versions are from n/a through 1.14.3. The CVSS 3.1 score is 4.3 (Medium); attacker-controlled actions may be triggered by a victim with no privileges but requires user interactio...

CVE-2024-32101 WordPress Email Marketing for WooCommerce plugin <= 1.14.3 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Omnisend Email Marketing for WooCommerce by Omnisend omnisend-connect.This issue affects Email Marketing for WooCommerce by Omnisend: from n/a through = 1.14.3...

CVE-2024-32101 WordPress Email Marketing for WooCommerce plugin <= 1.14.3 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Omnisend Email Marketing for WooCommerce by Omnisend omnisend-connect.This issue affects Email Marketing for WooCommerce by Omnisend: from n/a through = 1.14.3...

PT-2024-24407 · Omnisend · Email Marketing For Woocommerce

Name of the Vulnerable Software and Affected Versions: Email Marketing for WooCommerce by Omnisend versions 1.14.3 and earlier Description: A Cross-Site Request Forgery CSRF issue affects the software, allowing unauthorized actions to be performed on behalf of a user without their knowledge...

WordPress Plugin Email Marketing for WooCommerce by Omnisend 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. WordPress Plugin Email Marketi...

WordPress Email Marketing for WooCommerce plugin <= 1.14.3 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Dhabaleshwar Das Patchstack Alliance in WordPress Plugin Email Marketing for WooCommerce by Omnisend versions = 1.14.3...

WordPress Email Marketing for WooCommerce by Omnisend Plugin <= 1.14.3 is vulnerable to Cross Site Request Forgery (CSRF)

Software Email Marketing for WooCommerce by Omnisend Type Plugin Vulnerable versions = 1.14.3 Fixed in 1.14.4 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-32101 Patch priority Low CVSS severity Low 4.3 Developer Omnisend PSID c729b2703222...

CVE-2023-47244

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Omnisend Email Marketing for WooCommerce by Omnisend.This issue affects Email Marketing for WooCommerce by Omnisend: from n/a through 1.13.8...

CVE-2023-47244

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Omnisend Email Marketing for WooCommerce by Omnisend.This issue affects Email Marketing for WooCommerce by Omnisend: from n/a through 1.13.8...

CVE-2023-47244

CVE-2023-47244: Exposure of Sensitive Information to an Unauthorized Actor in the WordPress plugin Email Marketing for WooCommerce by Omnisend (Omnisend Connect) affecting versions ≤ 1.13.8. The issue enables unauthenticated access to sensitive data. Mitigation: upgrade to version 1.13.9 where th...

CVE-2023-47244 WordPress Email Marketing for WooCommerce by Omnisend Plugin <= 1.13.8 is vulnerable to Sensitive Data Exposure

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Omnisend Email Marketing for WooCommerce by Omnisend.This issue affects Email Marketing for WooCommerce by Omnisend: from n/a through 1.13.8...

Email Marketing for WooCommerce by Omnisend < 1.13.9 - Sensitive Information Exposure

Description The Email Marketing for WooCommerce by Omnisend plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.13.8 via the status REST API endpoint. This makes it possible for unauthenticated attackers to extract sensitive user informatio...

WordPress Plugin Omnisend Email Marketing for WooCommerce Information Disclosure Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. An information disclosure...

WordPress Email Marketing for WooCommerce by Omnisend Plugin <= 1.13.8 is vulnerable to Sensitive Data Exposure

Software Email Marketing for WooCommerce by Omnisend Type Plugin Vulnerable versions = 1.13.8 Fixed in 1.13.9 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2023-47244 Patch priority Medium CVSS severity Medium 5.3 Developer Omnisend PSID 49ae3aec24ec...