10 matches found
EUVD-2014-4527
Malware in sbrugna...
CVE-2013-3263
Multiple cross-site scripting XSS vulnerabilities in the WP Ultimate Email Marketer plugin 1.1.0 and possibly earlier for Wordpress allow remote attackers to inject arbitrary web script or HTML via the 1 siteurl parameter to campaign/campaignone.php; the 2 action, 3 campaignname, 4 campaignformat...
WP Ultimate Email Marketer - Multiple Vulnerabilities
The wp-ultimate-email-marketer WordPress plugin was affected by a Multiple Vulnerabilities security vulnerability...
CVE-2014-4600
Multiple cross-site scripting XSS vulnerabilities in contact/edit.php in the WP Ultimate Email Marketer plugin 1.1.0 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 listname or 2 contact parameter...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in contact/edit.php in the WP Ultimate Email Marketer plugin 1.1.0 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 listname or 2 contact parameter...
CVE-2014-4600
Summary: The WP Ultimate Email Marketer WordPress plugin (
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in the WP Ultimate Email Marketer plugin 1.1.0 and possibly earlier for Wordpress allow remote attackers to inject arbitrary web script or HTML via the 1 siteurl parameter to campaign/campaignone.php; the 2 action, 3 campaignname, 4 campaignformat...
Code injection
The WP Ultimate Email Marketer plugin 1.1.0 and possibly earlier for Wordpress does not properly restrict access to 1 list/edit.php and 2 campaign/editCampaign.php, which allows remote attackers to modify list or campaign data...
CVE-2013-3263
CVE-2013-3263 affects the WordPress WP Ultimate Email Marketer Plugin (tested with version 1.1.0 and possibly earlier). The connected sources describe multiple XSS vulnerabilities that allow remote attackers to inject arbitrary script or HTML via a range of parameters (siteurl, action, campaignna...
CVE-2013-3264
The WP Ultimate Email Marketer plugin 1.1.0 and possibly earlier for Wordpress does not properly restrict access to 1 list/edit.php and 2 campaign/editCampaign.php, which allows remote attackers to modify list or campaign data...