Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
newsletters vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2019-1356989
WordPress Email Subscribers and Newsletters plugin version 4.2.2 suffers from a remote SQL injection vulnerability.
4.3
CVSSv2
CVE-2008-5566
Cross-site scripting (XSS) vulnerability in index.php in Triangle Solutions PHP Multiple Newsletters 2.7 allows remote malicious users to inject arbitrary web script or HTML via the PATH_INFO.
Phpmultiplenewsletters Phpmultiplenewsletters 2.7
1 EDB exploit
NA
CVE-2022-46821
Improper Neutralization of Formula Elements in a CSV File vulnerability in Jackmail & Sarbacane Emails & Newsletters with Jackmail.This issue affects Emails & Newsletters with Jackmail: from n/a up to and including 1.2.22.
Jackmail Jackmail
NA
CVE-2024-22300
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Icegram Email Subscribers & Newsletters allows Reflected XSS.This issue affects Email Subscribers & Newsletters: from n/a up to and including 5.7.11.
NA
CVE-2022-45810
Improper Neutralization of Formula Elements in a CSV File vulnerability in Icegram Icegram Express – Email Marketing, Newsletters and Automation for WordPress & WooCommerce.This issue affects Icegram Express – Email Marketing, Newsletters and Automation for WordPr...
Icegram Icegram Express
NA
CVE-2023-41730
Cross-Site Request Forgery (CSRF) vulnerability in SendPress Newsletters plugin <= 1.22.3.31 versions.
Pressified Sendpress
NA
CVE-2023-47517
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in SendPress Newsletters plugin <= 1.23.11.6 versions.
Pressified Sendpress
NA
CVE-2023-41729
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in SendPress Newsletters plugin <= 1.22.3.31 versions.
Pressified Sendpress
6.8
CVSSv2
CVE-2012-1297
Multiple cross-site request forgery (CSRF) vulnerabilities in main.php in Contao (formerly TYPOlight) 2.11.0 and previous versions allow remote malicious users to hijack the authentication of administrators for requests that (1) delete users via a delete action in the user module...
Contao Contao Cms 2.10.0
Contao Contao Cms 2.10.
Contao Contao Cms 2.9.0
Contao Contao Cms 2.8.0
Contao Contao Cms 2.7.7
Contao Contao Cms 2.7.0
Contao Contao Cms 2.6.2
Contao Contao Cms 2.6.1
Contao Contao Cms 2.5.6
Contao Contao Cms 2.5.5
Contao Contao Cms 2.4.7
Contao Contao Cms 2.4.6
Contao Contao Cms 2.4.0
Contao Contao Cms 2.3.4
Contao Contao Cms 2.2.10
Contao Contao Cms 2.2.9
Contao Contao Cms 2.2.1
Contao Contao Cms 2.2.0
Contao Contao Cms 2.1.14
Contao Contao Cms 2.1.13
Contao Contao Cms 2.1.6
Contao Contao Cms 2.1.5
1 EDB exploit
NA
CVE-2024-32953
Insertion of Sensitive Information into Log File vulnerability in Newsletters.This issue affects Newsletters: from n/a up to and including 4.9.5.
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4040
cross-site scripting
CVE-2023-25790
CVE-2024-2961
XML external entity
CVE-2024-26926
CVE-2024-32806
CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »