Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
Wp-webhooksEmail Encoder

3 matches found

CVE
CVEadded 2023/08/30 1:45 a.m.99 views

CVE-2023-4599

CVE-2023-4599 affects the Slimstat Analytics WordPress plugin. It is a stored XSS via the eeb_mailto shortcode caused by insufficient input sanitization and output escaping. Exploitation requires an authenticated attacker with contributor-level permissions or higher, who can inject scripts that e...

6.4CVSS6.8AI score0.0045EPSS
CVE
CVEadded 2024/07/29 6:0 a.m.53 views

CVE-2024-4483

CVE-2024-4483 affects the Email Encoder WordPress plugin prior to 2.2.2. The vulnerability is a Stored XSS where the parameter WP_Email_Encoder_Bundle_options[protection_text] is not escaped before output in an admin page attribute, enabling potentially malicious input to be stored and reflected....

5.4CVSS5.7AI score0.00356EPSS
CVE
CVEadded 2021/09/06 11:9 a.m.43 views

CVE-2021-24599

The CVE-2021-24599 entry concerns the WordPress plugin Email Encoder – Protect Email Addresses, affected in versions before 2.1.2. The vulnerability is an unauthenticated endpoint that renders a user-supplied value in the HTML response without escaping or sanitizing, leading to a reflected cross-...

6.1CVSS6.3AI score0.00827EPSS
Web