EUVD-2019-5932

Malware in sbrugna...

EUVD-2023-46343

Malicious code in bioql PyPI...

EUVD-2024-29245

Malicious code in bioql PyPI...

Discourse authorization issue vulnerability (CNVD-2024-4964085)

Discourse is Discourse open source set of open source community discussion platform. The platform includes features such as community , e-mail and chat rooms . Discourse has an authorization issue vulnerability that stems from improper privilege management of the Filter Email List feature in the...

Discourse 信息泄露漏洞

Discourse is Discourse open source set of open source community discussion platform. The platform includes features such as community , e-mail and chat rooms . Discourse has an authorization issue vulnerability that stems from improper privilege management of the Filter Email List feature in the...

CVE-2024-8735 MailMunch – Grow your Email List <= 3.1.8 - Reflected Cross-Site Scripting

The MailMunch – Grow your Email List plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 3.1.8. This makes it possible for unauthenticated attackers to inject arbitrary web...

WordPress MailMunch – Grow your Email List Plugin <= 3.1.8 is vulnerable to Cross Site Scripting (XSS)

Software MailMunch – Grow your Email List Type Plugin Vulnerable versions = 3.1.8 Fixed in 3.2.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-8735 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5f0fbbdecd42 Credits...

MailMunch – Grow your Email List < 3.1.7 - Authenticated (Contributor+) Stored Cross-Site Scripting

Description The MailMunch – Grow your Email List plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcode in all versions up to, and including, 3.1.6 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible...

WordPress MailMunch – Grow your Email List Plugin <= 3.1.6 is vulnerable to Cross Site Scripting (XSS)

Software MailMunch – Grow your Email List Type Plugin Vulnerable versions = 3.1.6 Fixed in 3.1.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-31349 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 7297ea028cbf Credits Ray Wilson Required...

CVE-2023-51532

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Icegram Icegram Engage – WordPress Lead Generation, Popup Builder, CTA, Optins and Email List Building allows Stored XSS.This issue affects Icegram Engage – WordPress Lead Generation, Popup Builder...

CVE-2023-51532

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Icegram Icegram Engage – WordPress Lead Generation, Popup Builder, CTA, Optins and Email List Building allows Stored XSS.This issue affects Icegram Engage – WordPress Lead Generation, Popup Builder...

CVE-2023-51532 WordPress Icegram Plugin <= 3.1.19 is vulnerable to Cross Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Icegram Icegram Engage – WordPress Lead Generation, Popup Builder, CTA, Optins and Email List Building allows Stored XSS.This issue affects Icegram Engage – WordPress Lead Generation, Popup Builder...

CVE-2023-52119

Cross-Site Request Forgery CSRF vulnerability in Icegram Icegram Engage – WordPress Lead Generation, Popup Builder, CTA, Optins and Email List Building.This issue affects Icegram Engage – WordPress Lead Generation, Popup Builder, CTA, Optins and Email List Building: from n/a through 3.1.18...

CVE-2023-52119

Cross-Site Request Forgery CSRF vulnerability in Icegram Icegram Engage – WordPress Lead Generation, Popup Builder, CTA, Optins and Email List Building.This issue affects Icegram Engage – WordPress Lead Generation, Popup Builder, CTA, Optins and Email List Building: from n/a through 3.1.18...

CVE-2023-52119

Technical details about CVE-2023-52119, including affected versions, exploit vector, and patch status, are not provided in the supplied documents. Monitor for updates from upstream advisories; current sources only confirm a CSRF vulnerability in Icegram Engage up to v3.1.18.

PT-2024-14416 · WordPress · Icegram Engage

Name of the Vulnerable Software and Affected Versions: Icegram Engage – WordPress Lead Generation, Popup Builder, CTA, Optins and Email List Building versions through 3.1.18 Description: A Cross-Site Request Forgery CSRF issue affects the software, allowing unauthorized actions to be performed on...

CVE-2023-41852

Cross-Site Request Forgery CSRF vulnerability in MailMunch MailMunch – Grow your Email List plugin = 3.1.2 versions...

CVE-2023-41852

CVE-2023-41852 refers to a CSRF vulnerability in the WordPress plugin MailMunch – Grow your Email List, affecting versions

PT-2023-28118 · WordPress · Mailmunch

Name of the Vulnerable Software and Affected Versions: MailMunch MailMunch – Grow your Email List plugin versions = 3.1.2 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended...

WordPress MailMunch – Grow your Email List Plugin <= 3.1.2 is vulnerable to Cross Site Request Forgery (CSRF)

Software MailMunch – Grow your Email List Type Plugin Vulnerable versions = 3.1.2 Fixed in 3.1.3 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-41852 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID a9b8babe6424 Credits Ab...