EUVD-2019-6750

Malware in sbrugna...

CVE-2019-15833

The simple-mail-address-encoder plugin before 1.7 for WordPress has reflected XSS...

CVE-2019-15833

The simple-mail-address-encoder plugin before 1.7 for WordPress has reflected XSS...

CVE-2019-15833

CVE-2019-15833 affects the WordPress plugin simple-mail-address-encoder prior to version 1.7. The issue is a reflected XSS in the plugin, as documented across multiple sources (NVD, Red Hat, CNVD, CVE list, PRION, WPVulnDB). The root cause is reflected client-side scripting when untrusted input i...

PT-2019-14422 · Unknown · Simple-Mail-Address-Encoder

Name of the Vulnerable Software and Affected Versions: simple-mail-address-encoder plugin versions prior to 1.7 Description: The issue is related to reflected XSS in the simple-mail-address-encoder plugin. Recommendations: For versions prior to 1.7, update to version 1.7 or later to resolve the...

WordPress Simple Mail Address Encoder plugin <= 1.6.1 - Reflected Authenticated Cross-Site Scripting (XSS) vulnerability

Reflected Authenticated Cross-Site Scripting XSS vulnerability found in WordPress Simple Mail Address Encoder plugin versions = 1.6.1. Solution Update the WordPress Simple Mail Address Encoder plugin to the latest available version at least 1.7...

Simple Mail Address Encoder <= 1.6.1 - Reflected Authenticated XSS

Reflected XSS in the base64 encoded fwurl parameter when the plugin has been used for 30 days and shows a donation notice PoC https:///wp-admin/options-general.php?page=smae=remind=Iyc7YWxlcnQoL1hTUy8pOy8v...