Lucene search
K

5 matches found

patchstack
patchstack
added 2026/01/30 3:40 a.m.6 views

WordPress Newsletter Popup plugin <= 1.2 - List Deletion via CSRF vulnerability

List Deletion via CSRF vulnerability discovered by Bob Matyas in WordPress Plugin Newsletter Popup versions = 1.2...

8.8CVSS5.9AI score0.00347EPSS
Exploits3References1Affected Software1
patchstack
patchstack
added 2024/05/16 12:0 a.m.14 views

WordPress Newsletter Popup Plugin <= 1.2 is vulnerable to Cross Site Scripting (XSS)

Software Newsletter Popup Type Plugin Vulnerable versions = 1.2 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-3644 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 7dd3456f2155 Credits Bob Matyas Required privile...

4.8CVSS5.8AI score0.00372EPSS
Exploits2References3Affected Software1
cnnvd
cnnvd
added 2023/05/30 12:0 a.m.18 views

WordPress plugin Newsletter Popup 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, which supports personal blogs on PHP and MySQL servers.WordPress plugin is an...

8.8CVSS8.1AI score0.00389EPSS
Exploits2References2
patchstack
patchstack
added 2023/05/11 12:0 a.m.11 views

WordPress Newsletter Popup Plugin <= 1.2 is vulnerable to Cross Site Scripting (XSS)

Software Newsletter Popup Type Plugin Vulnerable versions = 1.2 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-0733 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 3312adcb21e4 Credits Lana Codes Required...

6.1CVSS5.6AI score0.0051EPSS
Exploits2References4Affected Software1
patchstack
patchstack
added 2023/05/11 12:0 a.m.14 views

WordPress Newsletter Popup Plugin <= 1.2 is vulnerable to Cross Site Request Forgery (CSRF)

Software Newsletter Popup Type Plugin Vulnerable versions = 1.2 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-0766 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 5cf141768871 Credits Lana Codes Required...

8.8CVSS6.6AI score0.00389EPSS
Exploits2References5Affected Software1
Rows per page
Query Builder