EUVD-2017-9680

Malware in sbrugna...

CVE-2024-39657 WordPress Sender plugin <= 2.6.18 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Sender Sender – Newsletter, SMS and Email Marketing Automation for WooCommerce.This issue affects Sender – Newsletter, SMS and Email Marketing Automation for WooCommerce: from n/a through 2.6.18...

CVE-2024-39657 WordPress Sender plugin <= 2.6.18 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Sender Sender – Newsletter, SMS and Email Marketing Automation for WooCommerce.This issue affects Sender – Newsletter, SMS and Email Marketing Automation for WooCommerce: from n/a through 2.6.18...

WordPress plugin Sender 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

CVE-2024-43126 WordPress Sender – Newsletter, SMS and Email Marketing Automation for WooCommerce plugin <= 2.6.14 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Sender Sender – Newsletter, SMS and Email Marketing Automation for WooCommerce allows Reflected XSS.This issue affects Sender – Newsletter, SMS and Email Marketing Automation for WooCommerce...

PT-2024-30314 · Woocommerce · Sender

Name of the Vulnerable Software and Affected Versions: Sender – Newsletter, SMS and Email Marketing Automation for WooCommerce versions n/a through 2.6.14 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This...

WordPress Sender plugin <= 2.6.18 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Joshua Chan Patchstack Alliance in WordPress Plugin Sender – Newsletter, SMS and Email Marketing Automation for WooCommerce versions = 2.6.18...

CVE-2023-38387

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Elastic Email Sender plugin = 1.2.6 versions...

CVE-2023-38387 WordPress Elastic Email Sender Plugin <= 1.2.6 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Elastic Email Sender plugin = 1.2.6 versions...

CVE-2017-18564

The sender plugin before 1.2.1 for WordPress has multiple XSS issues...

Cross site scripting

The sender plugin before 1.2.1 for WordPress has multiple XSS issues...

CVE-2017-18564

The sender plugin before 1.2.1 for WordPress has multiple XSS issues...

CVE-2017-18564

CVE-2017-18564 affects the WordPress plugin Sender (BestWebSoft) before 1.2.1. It describes multiple XSS flaws in the plugin, enabling authenticated users to inject JavaScript in victims’ browsers (CWE-79). The issue is network-accessible but requires user interaction; remediation is to update to...

WordPress Sender 0.7 Cross Site Request Forgery

Plugin Name : Sender A8-Cross-SiteRequestForgeryCSRF Effected Version : 0.7 and most probably lower version's if any Vulnerability : A8-Cross-Site Request Forgery CSRF Identified by : Madhu Akula Technical Details Minimum Level of Access Required : Unauthenticated PoC - Proof of Concept : POC for...