Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xyzscripts newsletter manager vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-6627
Cross-site scripting (XSS) vulnerability in admin/test_mail.php in the Newsletter Manager plugin 1.0.2 and previous versions for WordPress allows remote malicious users to inject arbitrary web script or HTML via the id parameter.
Xyzscripts Newsletter Manager
Xyzscripts Newsletter Manager 1.0.1
Xyzscripts Newsletter Manager 1.0
NA
CVE-2012-6628
Multiple cross-site scripting (XSS) vulnerabilities in the Newsletter Manager plugin prior to 1.0.2 for WordPress allow remote malicious users to inject arbitrary web script or HTML via the (1) xyz_em_campName to admin/create_campaign.php or (2) admin/edit_campaign.php, (3) xyz_e...
Xyzscripts Newsletter Manager 1.0
Xyzscripts Newsletter Manager
Xyzscripts Newsletter Manager 1.0.1
NA
CVE-2012-6629
Multiple cross-site request forgery (CSRF) vulnerabilities in the Newsletter Manager plugin 1.0.2 and previous versions for WordPress allow remote malicious users to hijack the authentication of administrators for requests that (1) change an email address or (2) conduct script in...
Xyzscripts Newsletter Manager
Xyzscripts Newsletter Manager 1.0.1
Xyzscripts Newsletter Manager 1.0
9.8
CVSSv3
CVE-2020-36727
The Newsletter Manager plugin for WordPress is vulnerable to insecure deserialization in versions up to, and including, 1.5.1. This is due to unsanitized input from the 'customFieldsDetails' parameter being passed through a deserialization function. This potentially mak...
Xyzscripts Newsletter Manager
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
hard-coded
CVE-2024-27202
NULL pointer dereference
CVE-2024-28075
CVE-2024-33608
CVE-2024-28889
CVE-2024-34572
template injection
CVE-2024-34351
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started