Improper Neutralization of Formula Elements in a CSV File vulnerability in Icegram Icegram Express β Email Marketing, Newsletters and Automation for WordPress & WooCommerce.This issue affects Icegram Express β Email Marketing, Newsletters and Automation for WordPress & WooCommerce: from n/a through...
9.8CVSS
9.4AI Score
0.001EPSS
The Icegram Express plugin for WordPress is vulnerable to Directory Traversal in versions up to, and including, 5.6.23 via the show_es_logs function. This allows administrator-level attackers to read the contents of arbitrary files on the server, which can contain sensitive information including th...
9.1CVSS
6.8AI Score
0.001EPSS