Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
codemiq wp html mail vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2019-25144
The WP HTML Mail plugin for WordPress is vulnerable to HTML injection in versions up to, and including, 2.2.10 due to insufficient input sanitization. This makes it possible for unauthenticated malicious users to inject arbitrary HTML in pages that execute if they can successfull...
Codemiq Wp Html Mail
6.1
CVSSv3
CVE-2019-25148
The WP HTML Mail plugin for WordPress is vulnerable to HTML injection in versions up to, and including, 2.9.0.3 due to insufficient input sanitization. This makes it possible for unauthenticated malicious users to inject arbitrary HTML in pages that execute if they can successful...
Codemiq Wp Html Mail
8.8
CVSSv3
CVE-2023-40202
Cross-Site Request Forgery (CSRF) vulnerability in Hannes Etzelstorfer // codemiq WP HTML Mail plugin <= 3.4.1 versions.
Codemiq Wp Html Mail
6.1
CVSSv3
CVE-2022-0218
The WP HTML Mail WordPress plugin is vulnerable to unauthorized access which allows unauthenticated malicious users to retrieve and modify theme settings due to a missing capability check on the /themesettings REST-API endpoint found in the ~/includes/class-template-designer.php ...
Codemiq Wordpress Email Template Designer
8.8
CVSSv3
CVE-2021-20779
Cross-site request forgery (CSRF) vulnerability in WordPress Email Template Designer - WP HTML Mail versions before 3.0.8 allows remote malicious users to hijack the authentication of administrators via unspecified vectors.
Codemiq Wordpress Email Template Designer
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started