63 matches found
EUVD-2021-11897
Malware in sbrugna...
EUVD-2024-35500
Malicious code in bioql PyPI...
EUVD-2023-23583
Malicious code in bioql PyPI...
EUVD-2023-27983
Malicious code in bioql PyPI...
EUVD-2023-23582
Malicious code in bioql PyPI...
EUVD-2024-22457
Malicious code in bioql PyPI...
CVE-2023-1325
The Easy Forms for Mailchimp WordPress plugin before 6.8.7 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting atta...
CVE-2023-1324
The Easy Forms for Mailchimp WordPress plugin before 6.8.8 does not sanitise and escape some parameters before outputting them back in the response, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
CVE-2023-23900
Unauth. Reflected Cross-Site Scripting XSS vulnerability in YIKES, Inc. Easy Forms for Mailchimp plugin = 6.8.8 versions...
CVE-2023-1323
The Easy Forms for Mailchimp WordPress plugin before 6.8.9 does not sanitise and escape some of its from parameters, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite...
CVE-2021-24985
The Easy Forms for Mailchimp WordPress plugin before 6.8.6 does not sanitise and escape the fieldname and fieldtype parameters before outputting them back in attributes, leading to Reflected Cross-Site Scripting issues...
CVE-2024-25095
Insertion of Sensitive Information into Log File vulnerability in Code Parrots Easy Forms for Mailchimp.This issue affects Easy Forms for Mailchimp: from n/a through 6.9.0...
CVE-2024-35742
Missing Authorization vulnerability in Code Parrots Easy Forms for Mailchimp.This issue affects Easy Forms for Mailchimp: from n/a through 6.9.0...
CVE-2024-35742
Missing Authorization vulnerability in Code Parrots Easy Forms for Mailchimp.This issue affects Easy Forms for Mailchimp: from n/a through 6.9.0...
CVE-2024-35742 WordPress Easy Forms for Mailchimp plugin <= 6.9.0 - Broken Access Control vulnerability
Missing Authorization vulnerability in Code Parrots Easy Forms for Mailchimp.This issue affects Easy Forms for Mailchimp: from n/a through 6.9.0...
CVE-2024-35742
CVE-2024-35742 is listed in the initial document as a Missing Authorization vulnerability in Easy Forms for Mailchimp affecting versions up to 6.9.0. The connected documents do not provide detailed technical specifics (no root cause, impact, affected sub-components, or remediation steps) beyond t...
WordPress plugin Easy Forms for Mailchimp security vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin... A security vulnerability...
WordPress Easy Forms for Mailchimp plugin <= 6.9.0 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by NGÔ THIÊN AN Patchstack Alliance in WordPress Plugin Easy Forms for Mailchimp versions = 6.9.0...
WordPress Easy Forms for Mailchimp Plugin <= 6.9.0 is vulnerable to Broken Access Control
Software Easy Forms for Mailchimp Type Plugin Vulnerable versions = 6.9.0 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-35742 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 177d8b32aedf Credits Ngô Thiên An ancorn fr...
CVE-2024-25095
Insertion of Sensitive Information into Log File vulnerability in Code Parrots Easy Forms for Mailchimp.This issue affects Easy Forms for Mailchimp: from n/a through 6.9.0...