3 matches found
CVE-2013-10028
A vulnerability was found in EELV Newsletter Plugin 2.x on WordPress. It has been rated as problematic. Affected by this issue is the function style_newsletter of the file lettreinfo.php. The manipulation of the argument email leads to cross site scripting. The attack may be launched remotely. The ...
CVE-2017-18523
The eelv-newsletter plugin before 4.6.1 for WordPress has CSRF in the address book.
CVE-2017-18522
The eelv-newsletter plugin before 4.6.1 for WordPress has XSS in the address book.