Lucene search
K

17 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-11897

Malware in sbrugna...

6.1CVSS6.1AI score0.01109EPSS
Exploits2References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.12 views

EUVD-2023-23583

Malicious code in bioql PyPI...

5.4CVSS6.6AI score0.00529EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:24 p.m.9 views

CVE-2021-24985

The Easy Forms for Mailchimp WordPress plugin before 6.8.6 does not sanitise and escape the fieldname and fieldtype parameters before outputting them back in attributes, leading to Reflected Cross-Site Scripting issues...

6.1CVSS6.1AI score0.01109EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/02/05 1:8 p.m.15 views

CVE-2024-25095

Insertion of Sensitive Information into Log File vulnerability in Code Parrots Easy Forms for Mailchimp.This issue affects Easy Forms for Mailchimp: from n/a through 6.9.0...

7.5CVSS6.9AI score0.00421EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/06/10 7:40 a.m.23 views

CVE-2024-35742 WordPress Easy Forms for Mailchimp plugin <= 6.9.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in Code Parrots Easy Forms for Mailchimp.This issue affects Easy Forms for Mailchimp: from n/a through 6.9.0...

5.3CVSS7.2AI score0.00316EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/02/12 12:0 a.m.14 views

WordPress Easy Forms for Mailchimp Plugin <= 6.9.0 is vulnerable to Sensitive Data Exposure

Software Easy Forms for Mailchimp Type Plugin Vulnerable versions = 6.9.0 Fixed in N/A OWASP Top 10 A9: Security Logging and Monitoring Failures Classification Sensitive Data Exposure CVE CVE-2024-25095 Patch priority Low CVSS severity Low 7.5 Developer Claim ownership PSID 268130a7347a Credits...

7.5CVSS6.6AI score0.00421EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/01/15 3:10 p.m.34 views

CVE-2023-4925 Easy Forms for Mailchimp <= 6.8.10 - Admin+ Stored Cross-Site Scripting

The Easy Forms for Mailchimp WordPress plugin through 6.8.10 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when unfilteredhtml is disallowed...

5AI score0.00402EPSS
Exploits2References1
Positive Technologies
Positive Technologies
added 2024/01/15 12:0 a.m.6 views

PT-2024-13708 · WordPress · Easy Forms For Mailchimp

Name of the Vulnerable Software and Affected Versions: Easy Forms for Mailchimp WordPress plugin versions 6.8.10 and earlier Description: The issue concerns the lack of proper sanitization and escaping of some settings in the plugin, which could allow high-privilege users, such as administrators,...

4.8CVSS4.7AI score0.00402EPSS
Exploits2References6
Vulnrichment
Vulnrichment
added 2023/08/10 11:30 a.m.14 views

CVE-2023-23900 WordPress Easy Forms for Mailchimp Plugin <= 6.8.8 is vulnerable to Cross Site Scripting (XSS)

Unauth. Reflected Cross-Site Scripting XSS vulnerability in YIKES, Inc. Easy Forms for Mailchimp plugin = 6.8.8 versions...

5.8CVSS5.9AI score0.00362EPSS
Exploits0References1
CVE
CVE
added 2023/08/10 11:30 a.m.38 views

CVE-2023-23900

CVE-2023-23900 — WordPress plugin YIKES, Easy Forms for Mailchimp : An unauthenticated, reflected Cross-Site Scripting (XSS) vulnerability affects the plugin versions

6.1CVSS5.7AI score0.00362EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/05/30 7:49 a.m.16 views

CVE-2023-2518 Easy Forms for Mailchimp < 6.8.9 - Reflected XSS

The Easy Forms for Mailchimp WordPress plugin before 6.8.9 does not sanitise and escape a parameter before outputting it back in the page when the debug option is enabled, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

6AI score0.01092EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2023/04/17 12:17 p.m.14 views

CVE-2023-1325 Easy Forms for MailChimp < 6.8.7 - Contributor+ Stored XSS

The Easy Forms for Mailchimp WordPress plugin before 6.8.7 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting atta...

6.1AI score0.00529EPSS
Exploits2References1
Patchstack
Patchstack
added 2023/04/12 12:0 a.m.11 views

WordPress Easy Forms for Mailchimp Plugin < 6.8.8 is vulnerable to Cross Site Scripting (XSS)

Software Easy Forms for Mailchimp Type Plugin Vulnerable versions 6.8.8 Fixed in 6.8.8 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-1324 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID c14e208dddfc Credits Erwan LR WPScan...

6.1CVSS5.7AI score0.00559EPSS
Exploits2References2Affected Software1
CNVD
CNVD
added 2022/01/26 12:0 a.m.22 views

WordPress Easy Forms for Mailchimp plugin cross-site scripting vulnerability

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Wordpress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. cross-site scripting vulnerability exists in versions of the Easy Forms for Mailchimp plugin for...

4.3CVSS1.9AI score0.01109EPSS
Exploits2Affected Software1
OpenVAS
OpenVAS
added 2022/01/26 12:0 a.m.15 views

WordPress Easy Forms for Mailchimp Plugin < 6.8.6 XSS Vulnerability

The WordPress plugin Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it...

6.1CVSS6.3AI score0.01109EPSS
Exploits2References1
Prion
Prion
added 2022/01/24 8:15 a.m.16 views

Cross site scripting

The Easy Forms for Mailchimp WordPress plugin before 6.8.6 does not sanitise and escape the fieldname and fieldtype parameters before outputting them back in attributes, leading to Reflected Cross-Site Scripting issues...

4.3CVSS6.1AI score0.01109EPSS
Exploits2References2Affected Software1
Cvelist
Cvelist
added 2022/01/24 8:1 a.m.28 views

CVE-2021-24985 Easy Forms for Mailchimp < 6.8.6 - Reflected Cross-Site Scripting

The Easy Forms for Mailchimp WordPress plugin before 6.8.6 does not sanitise and escape the fieldname and fieldtype parameters before outputting them back in attributes, leading to Reflected Cross-Site Scripting issues...

6.2AI score0.01109EPSS
Exploits2References2
Rows per page
Query Builder