20 matches found
CVE-2026-3985
The Creative Mail – Easier WordPress & WooCommerce Email Marketing plugin for WordPress is vulnerable to SQL Injection via the 'checkoutuuid' parameter in all versions up to, and including, 1.6.9. This is due to insufficient escaping on the user supplied parameter and lack of sufficient preparati...
EUVD-2026-31018
The Creative Mail – Easier WordPress & WooCommerce Email Marketing plugin for WordPress is vulnerable to SQL Injection via the 'checkoutuuid' parameter in all versions up to, and including, 1.6.9. This is due to insufficient escaping on the user supplied parameter and lack of sufficient preparati...
CVE-2026-3985
The Creative Mail – Easier WordPress & WooCommerce Email Marketing plugin for WordPress is vulnerable to SQL Injection via the 'checkoutuuid' parameter in all versions up to, and including, 1.6.9. This is due to insufficient escaping on the user supplied parameter and lack of sufficient preparati...
EUVD-2022-43957
Malicious code in bioql PyPI...
EUVD-2022-43958
Malicious code in bioql PyPI...
EUVD-2022-47672
Malicious code in bioql PyPI...
CVE-2022-44740
Multiple Cross-Site Request Forgery CSRF vulnerabilities in Creative Mail plugin = 1.5.4 on WordPress...
CVE-2022-44740
Multiple Cross-Site Request Forgery CSRF vulnerabilities in Creative Mail plugin = 1.5.4 on WordPress...
CVE-2022-44740 WordPress Creative Mail plugin <= 1.5.4 - Multiple Cross-Site Request Forgery (CSRF) vulnerabilities
Multiple Cross-Site Request Forgery CSRF vulnerabilities in Creative Mail plugin = 1.5.4 on WordPress...
CVE-2022-44740
The CVE-2022-44740 entry affects the WordPress Creative Mail plugin versions up to 1.5.4. The connected sources describe multiple Cross-Site Request Forgery (CSRF) vulnerabilities in this plugin, enabling attackers to trigger unwanted actions when a logged-in user interacts with the site. Reporte...
CVE-2022-40686
Cross-Site Request Forgery CSRF vulnerability in Creative Mail plugin = 1.5.4 on WordPress...
CVE-2022-40687
Cross-Site Request Forgery CSRF vulnerability in Creative Mail plugin = 1.5.4 on WordPress...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in Creative Mail plugin = 1.5.4 on WordPress...
CVE-2022-40687
CVE-2022-40687 affects the WordPress Creative Mail plugin (versions
CVE-2022-40687 WordPress Creative Mail plugin <= 1.5.4 - Cross-Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in Creative Mail plugin = 1.5.4 on WordPress...
CVE-2022-40686 WordPress Creative Mail plugin <= 1.5.4 - Cross-Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in Creative Mail plugin = 1.5.4 on WordPress...
CVE-2022-40686
CVE-2022-40686 affects the WordPress Creative Mail plugin up to version 1.5.4, describing a Cross-Site Request Forgery (CSRF) vulnerability in authenticated requests. The vulnerability consistency is confirmed across multiple sources (NVD listing and vulnerability databases in OpenVAS/patchstack/...
CVE-2022-40686 WordPress Creative Mail plugin <= 1.5.4 - Cross-Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in Creative Mail plugin = 1.5.4 on WordPress...
PT-2022-25473 · Unknown · Creative Mail
Name of the Vulnerable Software and Affected Versions: Creative Mail plugin versions = 1.5.4 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability. This means an attacker can trick a user into performing unintended actions on a web application that the user is authenticated to...
WordPress Creative Mail plugin <= 1.5.4 - Cross-Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability leading to plugin settings reset discovered by Muhammad Daffa Patchstack Alliance in the WordPress Creative Mail plugin versions = 1.5.4. Solution Update the WordPress Creative Mail plugin to the latest available version at least 1.6.0...