2 matches found
CVE-2013-3264
The WP Ultimate Email Marketer plugin 1.1.0 and possibly earlier for Wordpress does not properly restrict access to 1 list/edit.php and 2 campaign/editCampaign.php, which allows remote attackers to modify list or campaign data...
CVE-2013-3264
The CVE-2013-3264 entry concerns the WordPress plugin WP Ultimate Email Marketer (version 1.1.0 and possibly earlier). The root cause is improper access controls that fail to restrict access to (1) list/edit.php and (2) campaign/editCampaign.php, enabling remote attackers to modify list or campai...