Lucene search
K

6 matches found

NVD
NVD
added 2018/12/03 4:29 p.m.16 views

CVE-2018-1002006

These vulnerabilities require administrative privileges to exploit. There is an XSS vulnerability in integration-contact-form.html.php:14: via POST request variable classes...

4.8CVSS5AI score0.02582EPSS
Exploits5References3
OSV
OSV
added 2018/12/03 4:29 p.m.2 views

CVE-2018-1002006

These vulnerabilities require administrative privileges to exploit. There is an XSS vulnerability in integration-contact-form.html.php:14: via POST request variable classes...

4.8CVSS5.8AI score0.02582EPSS
Exploits5References3
CVE
CVE
added 2018/12/03 4:0 p.m.69 views

CVE-2018-1002006

The CVE-2018-1002006 entry concerns the WordPress Arigato Autoresponder and Newsletter plugin. Multiple vulnerabilities affect this plugin: authenticated blind SQL injection and multiple reflected M XSS issues, primarily in the integration-contact-form.html.php and related input handling. The Ope...

4.8CVSS5.6AI score0.02582EPSS
Exploits5References3Affected Software1
0day.today
0day.today
added 2018/09/18 12:0 a.m.101 views

WordPress Arigato Autoresponder And Newsletter 2.5 SQL Injection / XSS Vulnerabilities

Exploit for php platform in category web applications Title: Blind SQL injection and multiple reflected XSS vulnerabilities in Wordpress Plugin Arigato Autoresponder and Newsletter v2.5 Author: Larry W. Cashdollar, @larry0 Date: 2018-08-22...

0.1AI score0.04354EPSS
Exploits14
exploitpack
exploitpack
added 2018/09/18 12:0 a.m.73 views

WordPress Plugin Arigato Autoresponder and Newsletter 2.5 - Blind SQL Injection Reflected Cross-Site Scripting

WordPress Plugin Arigato Autoresponder and Newsletter 2.5 - Blind SQL Injection Reflected Cross-Site Scripting Title: Blind SQL injection and multiple reflected XSS vulnerabilities in Wordpress Plugin Arigato Autoresponder and Newsletter v2.5 Author: Larry W. Cashdollar, @larry0 Date: 2018-08-22...

6.5CVSS0.4AI score0.04354EPSS
Exploits14
Exploit DB
Exploit DB
added 2018/09/18 12:0 a.m.58 views

WordPress Plugin Arigato Autoresponder and Newsletter 2.5 - Blind SQL Injection / Reflected Cross-Site Scripting

Title: Blind SQL injection and multiple reflected XSS vulnerabilities in Wordpress Plugin Arigato Autoresponder and Newsletter v2.5 Author: Larry W. Cashdollar, @larry0 Date: 2018-08-22...

7.2CVSS5.4AI score0.04354EPSS
Exploits14
Rows per page
Query Builder