Lucene search
K

11 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:32 a.m.7 views

CVE-2017-18522

The eelv-newsletter plugin before 4.6.1 for WordPress has XSS in the address book...

6.1CVSS6.2AI score0.00905EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2013-1037

Malware in sbrugna...

6.1CVSS4.7AI score0.00546EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/22 12:28 a.m.6 views

CVE-2013-10028

A vulnerability was found in EELV Newsletter Plugin 2.x on WordPress. It has been rated as problematic. Affected by this issue is the function stylenewsletter of the file lettreinfo.php. The manipulation of the argument email leads to cross site scripting. The attack may be launched remotely. The...

6.1CVSS6.3AI score0.00546EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/16 2:13 p.m.8 views

CVE-2024-54430 WordPress EELV Newsletter plugin <= 4.8.2 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Bastien Ho EELV Newsletter allows Cross Site Request Forgery.This issue affects EELV Newsletter: from n/a through 4.8.2...

5.4CVSS7AI score0.00216EPSS
Exploits0References1
NVD
NVD
added 2023/06/04 7:15 p.m.21 views

CVE-2013-10028

A vulnerability was found in EELV Newsletter Plugin 2.x on WordPress. It has been rated as problematic. Affected by this issue is the function stylenewsletter of the file lettreinfo.php. The manipulation of the argument email leads to cross site scripting. The attack may be launched remotely. The...

6.1CVSS4.5AI score0.00546EPSS
Exploits0References3
Prion
Prion
added 2023/06/04 7:15 p.m.17 views

Cross site scripting

A vulnerability was found in EELV Newsletter Plugin 2.x on WordPress. It has been rated as problematic. Affected by this issue is the function stylenewsletter of the file lettreinfo.php. The manipulation of the argument email leads to cross site scripting. The attack may be launched remotely. The...

5.8CVSS6.4AI score0.00546EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2023/06/04 6:31 p.m.66 views

CVE-2013-10028

The CVE-2013-10028 entry concerns the EELV Newsletter Plugin for WordPress (versions 2.x). The vulnerability lies in the function style_newsletter (lettreinfo.php), where improper handling of the email parameter enables cross-site scripting. The issue can be exploited remotely. A patch is availab...

6.1CVSS4.8AI score0.00546EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2019/08/22 12:0 a.m.1 views

WordPress eelv-newsletter plugin cross-site scripting vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. eelv-newsletter is a contact form management plugin used in it. A cross-site scripting vulnerability exists in the WordPress...

6.1CVSS6.3AI score0.00905EPSS
Exploits0References1
NVD
NVD
added 2019/08/20 4:15 p.m.14 views

CVE-2017-18522

The eelv-newsletter plugin before 4.6.1 for WordPress has XSS in the address book...

6.1CVSS6.1AI score0.00905EPSS
Exploits0References1
OSV
OSV
added 2019/08/20 4:15 p.m.2 views

CVE-2017-18523

The eelv-newsletter plugin before 4.6.1 for WordPress has CSRF in the address book...

8.8CVSS5.8AI score0.00674EPSS
Exploits0References1
Patchstack
Patchstack
added 2015/05/15 12:0 a.m.9 views

WordPress EELV Newsletter Plugin <= 3.3.0 - Cross Site Scripting

Because of this vulnerability, the attackers can inject arbitrary JavaScript or HTML code. Solution Update the plugin...

2.3AI score
Exploits0References1Affected Software1
Rows per page
Query Builder