3 matches found
CVE-2024-37098 WordPress BlossomThemes Email Newsletter plugin <= 2.2.6 - Server Side Request Forgery (SSRF) vulnerability
Server-Side Request Forgery SSRF vulnerability in Blossom Themes BlossomThemes Email Newsletter.This issue affects BlossomThemes Email Newsletter: from n/a through 2.2.6...
CVE-2024-37098
CVE-2024-37098: BlossomThemes Email Newsletter plugin contains an authenticated SSRF vulnerability affecting BlossomThemes Email Newsletter versions up to 2.2.6. Patch available to 2.2.7 (wording from PatchStack reference). Impact and exploit details are not elaborated in the provided documents b...
WordPress BlossomThemes Email Newsletter Plugin <= 2.2.6 is vulnerable to Server Side Request Forgery (SSRF)
Software BlossomThemes Email Newsletter Type Plugin Vulnerable versions = 2.2.6 Fixed in 2.2.7 OWASP Top 10 A10: Server-Side Request Forgery SSRF Classification Server Side Request Forgery SSRF CVE CVE-2024-37098 Patch priority Low CVSS severity Low 4.4 Developer Claim ownership PSID 21a43a2470ce...