11 matches found
CVE-2017-18522
The eelv-newsletter plugin before 4.6.1 for WordPress has XSS in the address book...
EUVD-2013-1037
Malware in sbrugna...
CVE-2013-10028
A vulnerability was found in EELV Newsletter Plugin 2.x on WordPress. It has been rated as problematic. Affected by this issue is the function stylenewsletter of the file lettreinfo.php. The manipulation of the argument email leads to cross site scripting. The attack may be launched remotely. The...
CVE-2024-54430 WordPress EELV Newsletter plugin <= 4.8.2 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in Bastien Ho EELV Newsletter allows Cross Site Request Forgery.This issue affects EELV Newsletter: from n/a through 4.8.2...
CVE-2013-10028
A vulnerability was found in EELV Newsletter Plugin 2.x on WordPress. It has been rated as problematic. Affected by this issue is the function stylenewsletter of the file lettreinfo.php. The manipulation of the argument email leads to cross site scripting. The attack may be launched remotely. The...
Cross site scripting
A vulnerability was found in EELV Newsletter Plugin 2.x on WordPress. It has been rated as problematic. Affected by this issue is the function stylenewsletter of the file lettreinfo.php. The manipulation of the argument email leads to cross site scripting. The attack may be launched remotely. The...
CVE-2013-10028
The CVE-2013-10028 entry concerns the EELV Newsletter Plugin for WordPress (versions 2.x). The vulnerability lies in the function style_newsletter (lettreinfo.php), where improper handling of the email parameter enables cross-site scripting. The issue can be exploited remotely. A patch is availab...
WordPress eelv-newsletter plugin cross-site scripting vulnerability
WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. eelv-newsletter is a contact form management plugin used in it. A cross-site scripting vulnerability exists in the WordPress...
CVE-2017-18522
The eelv-newsletter plugin before 4.6.1 for WordPress has XSS in the address book...
CVE-2017-18523
The eelv-newsletter plugin before 4.6.1 for WordPress has CSRF in the address book...
WordPress EELV Newsletter Plugin <= 3.3.0 - Cross Site Scripting
Because of this vulnerability, the attackers can inject arbitrary JavaScript or HTML code. Solution Update the plugin...