Lucene search
K

10 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 6:17 p.m.5 views

CVE-2021-20779

Cross-site request forgery CSRF vulnerability in WordPress Email Template Designer - WP HTML Mail versions prior to 3.0.8 allows remote attackers to hijack the authentication of administrators via unspecified vectors...

8.8CVSS7.2AI score0.0087EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/10/03 12:0 a.m.6 views

WordPress Plugin Email Template Designer - WP HTML Mail Cross-Site Request Forgery Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. WordPress Plugin Email Template...

8.8CVSS6.5AI score0.00208EPSS
Exploits0References2
Check Point Advisories
Check Point Advisories
added 2022/10/30 12:0 a.m.48 views

Wordpress Email Template Designer Plugin Authentication Bypass (CVE-2022-0218)

An authentication bypass vulnerability exists in the Wordpress plugin "WordPress Email Template Designer - WP HTML Mail". The vulnerability is due to lack of authentication on REST-API endpoints created by the plugin...

4.3CVSS1.6AI score0.70511EPSS
Exploits3
Check Point Advisories
Check Point Advisories
added 2022/10/23 12:0 a.m.54 views

WordPress Email Template Designer Plugin Authentication Bypass (CVE-2022-0218)

An authentication bypass vulnerability exists in WordPress Email Template Designer. Successful exploitation of this vulnerability would allow remote attackers to gain unauthorized access into the affected system...

4.3CVSS6.1AI score0.70511EPSS
Exploits3
0day.today
0day.today
added 2022/01/19 12:0 a.m.335 views

WordPress Email Template Designer – WP HTML Mail 3.0.9 Cross Site Scripting Vulnerability

WordPress Email Template Designer – WP HTML Mail plugin versions 3.0.9 and below suffer from a cross site scripting vulnerability. Exploit makes it possible for unauthenticated attackers to achieve complete site takeover. On December 23, 2021 the Wordfence Threat Intelligence team initiated the...

8.3CVSS6.4AI score0.70511EPSS
Exploits3
Packet Storm
Packet Storm
added 2022/01/19 12:0 a.m.288 views

WordPress Email Template Designer – WP HTML Mail 3.0.9 Cross Site Scripting

Exploit makes it possible for unauthenticated attackers to achieve complete site takeover. On December 23, 2021 the Wordfence Threat Intelligence team initiated the responsible disclosure process for a vulnerability we discovered in “WordPress Email Template Designer – WP HTML Mail”, a WordPress...

6.6AI score0.70511EPSS
Exploits3
OSV
OSV
added 2021/07/07 8:15 a.m.5 views

CVE-2021-20779

Cross-site request forgery CSRF vulnerability in WordPress Email Template Designer - WP HTML Mail versions prior to 3.0.8 allows remote attackers to hijack the authentication of administrators via unspecified vectors...

8.8CVSS5.8AI score0.0087EPSS
Exploits0References3
CVE
CVE
added 2021/07/07 7:5 a.m.56 views

CVE-2021-20779

The CVE-2021-20779 issue affects the WordPress plugin WordPress Email Template Designer - WP HTML Mail, specifically versions prior to 3.0.8. The vulnerability is Cross-site Request Forgery (CSRF) that can allow an attacker to hijack administrator authentication via unspecified vectors. Root caus...

8.8CVSS8.8AI score0.0087EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2021/07/07 7:5 a.m.32 views

CVE-2021-20779

Cross-site request forgery CSRF vulnerability in WordPress Email Template Designer - WP HTML Mail versions prior to 3.0.8 allows remote attackers to hijack the authentication of administrators via unspecified vectors...

9.1AI score0.0087EPSS
Exploits0References3
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2021/07/06 5:50 a.m.2 views

WordPress Plugin "WordPress Email Template Designer - WP HTML Mail" vulnerable to cross-site request forgery

Overview WordPress Plugin "WordPress Email Template Designer - WP HTML Mail" provided by codemiq contains a cross-site request forgery vulnerability CWE-352. Konan Nagashima of Cryptography Laboratory,Department of Information and Communication Engineering,Tokyo Denki University reported this...

8.8CVSS6.4AI score0.0087EPSS
Exploits0References6
Rows per page
Query Builder