3 matches found
CVE-2021-36833
Summary: CVE-2021-36833 describes an authenticated stored XSS in WordPress MC4WP plugin (ibericode) version
CVE-2017-18577
The CVE-2017-18577 affects the Mailchimp-for-WP WordPress plugin, specifically versions prior to 4.1.8, due to an XSS flaw triggered by the return value of add_query_arg. Multiple sources (Red Hat, CNVD, CVE lists) confirm XSS in this plugin, with exploitation possible since the vulnerability is ...
CVE-2016-10871
Vulnerability summary (CVE-2016-10871): The Mailchimp for WordPress (mailchimp-for-wp) plugin for WordPress is affected up to version 4.0.10, with an XSS flaw on the integration settings page. The root cause is a lack of proper input validation on client-side data, leading to cross-site scripting...