Missing Authorization, Cross-Site Request Forgery (CSRF) vulnerability in AWeber AWeber β Free Sign Up Form and Landing Page Builder Plugin for Lead Generation and Email Newsletter Growth allows Accessing Functionality Not Properly Constrained by ACLs, Cross-Site Request Forgery.This issue affects ...
8.8CVSS
8.7AI Score
0.001EPSS
The AWeber β Free Sign Up Form and Landing Page Builder Plugin for Lead Generation and Email Newsletter Growth plugin for WordPress is vulnerable to SQL Injection via the 'post_id' parameter in all versions up to, and including, 7.3.14 due to insufficient escaping on the user supplied parameter and...
7.2CVSS
7.5AI Score
0.0004EPSS