Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
webfwd mail subscribe list vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2022-1603
The Mail Subscribe List WordPress plugin prior to 2.1.4 does not have CSRF check in place when deleting subscribed users, which could allow malicious users to make a logged in admin perform such action and delete arbitrary users from the subscribed list
Webfwd Mail Subscribe List
5.4
CVSSv3
CVE-2023-23657
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Richard Leishman t/a Webforward Mail Subscribe List plugin <= 2.1.9 versions.
Webfwd Mail Subscribe List
6.1
CVSSv3
CVE-2013-10026
A vulnerability, which was classified as problematic, has been found in Mail Subscribe List Plugin up to 2.0.10 on WordPress. This issue affects some unknown processing of the file index.php. The manipulation of the argument sml_name/sml_email leads to cross site scripting. The a...
Webfwd Mail Subscribe List
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761
command injection
CVE-2024-3676
IDOR
CVE-2024-30039
CVE-2024-32113
CVE-2024-30049
CVE-2024-4776
SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started