Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 47 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-25430 WordPress Integration for Mailchimp and Contact Form 7, WPForms, Elementor, Ninja Forms plugin <= 1.2.2 - Broken Access Control vulnerability CRM PerksIntegration for Mailchimp and Contact Form 7, WPForms, Elementor, Ninja Forms Medium 6.5 2026-03-25 16:14:49 Deep Dive
CVE-2026-1781 MC4WP: Mailchimp for WordPress <= 4.11.1 - Missing Authorization to Unauthenticated Arbitrary Subscription Deletion dvankootenMC4WP: Mailchimp for WordPress Medium 6.5 2026-03-11 01:22:04 Deep Dive
CVE-2025-12172 Mailchimp List Subscribe Form <= 2.0.0 - Cross-Site Request Forgery to Mailchimp List Change mailchimpMailchimp List Subscribe Form Medium 4.3 2026-02-19 03:25:13 Deep Dive
CVE-2026-1303 MailChimp Campaigns <= 3.2.4 - Missing Authorization to Authenticated (Subscriber+) MailChimp App Disconnection matthieuscarsetMailChimp Campaigns Medium 5.3 2026-02-14 06:42:34 Deep Dive
CVE-2025-68989 WordPress Contact Form 7 Extension For Mailchimp plugin <= 0.9.68 - Sensitive Data Exposure vulnerability Renzo Johnsoncontact-form-7-mailchimp-extension Medium 4.3 2025-12-30 10:47:50 Deep Dive
CVE-2025-11975 FuseWP – WordPress User Sync to Email List & Marketing Automation (Mailchimp, Constant Contact, ActiveCampaign etc.) <= 1.1.23.0 - Missing Authorization to Authenticated (Subscriber+) Sync Rule Creation fusewpFuseWP – WordPress User Sync to Email List & Marketing Automation (Mailchimp, Constant Contact, ActiveCampaign etc.) Medium 4.3 2025-10-31 02:26:04 Deep Dive
CVE-2025-11976 FuseWP – WordPress User Sync to Email List & Marketing Automation (Mailchimp, Constant Contact, ActiveCampaign etc.) <= 1.1.23.0 - Cross-Site Request Forgery to Sync Rule Creation fusewpFuseWP – WordPress User Sync to Email List & Marketing Automation (Mailchimp, Constant Contact, ActiveCampaign etc.) Medium 4.3 2025-10-25 06:49:25 Deep Dive
CVE-2025-10735 Block For Mailchimp – Easy Mailchimp Form Integration <= 1.1.12 - Unauthenticated Blind Server-Side Request Forgery bpluginsBlock for Mailchimp – Add Email Subscription Forms and Collect Leads Medium 4.0 2025-10-01 03:25:23 Deep Dive
CVE-2025-29012 WordPress CF7 7 Mailchimp Add-on plugin < 2.4 - Broken Access Control Vulnerability kamleshyadavCF7 7 Mailchimp Add-on Medium 5.3 2025-07-04 08:42:19 Deep Dive
CVE-2025-30613 WordPress Nmedia MailChimp plugin <= 5.4 - Cross Site Scripting (XSS) Vulnerability N-MediaNmedia MailChimp Medium 6.5 2025-04-01 05:31:36 Deep Dive
CVE-2025-22727 WordPress MailChimp Subscribe Form plugin <= 4.1 - Cross Site Scripting (XSS) vulnerability PluginOpsMailChimp Subscribe Forms Medium 6.5 2025-01-21 13:57:36 Deep Dive
CVE-2025-23675 WordPress Import Users to MailChimp plugin <= 1.0 - CSRF to Stored XSS vulnerability Sana UllahImport Users to MailChimp High 7.1 2025-01-16 20:06:41 Deep Dive
CVE-2024-12158 Popup – MailChimp, GetResponse and ActiveCampaign Intergrations <= 3.2.6 - Missing Authorization to Unauthenticated DB Table Truncation arrowpluginsPopup – MailChimp, GetResponse and ActiveCampaign Intergrations Medium 5.3 2025-01-07 04:22:17 Deep Dive
CVE-2024-12157 Popup – MailChimp, GetResponse and ActiveCampaign Intergrations <= 3.2.6 - Unauthenticated SQL Injection arrowpluginsPopup – MailChimp, GetResponse and ActiveCampaign Intergrations High 7.5 2025-01-07 04:21:58 Deep Dive
CVE-2023-40203 WordPress MailChimp Forms by MailMunch plugin <= 3.1.4 - Broken Access Control mailmunchMailChimp Forms by MailMunch Medium 4.3 2024-12-13 14:24:06 Deep Dive
CVE-2024-8726 MailChimp Forms by MailMunch <= 3.2.3 - Reflected Cross-Site Scripting mailmunchMailChimp Forms by MailMunch Medium 6.1 2024-11-20 06:42:55 Deep Dive
CVE-2024-43211 WordPress MailChimp Subscribe Form plugin <=4.0.9.9 - Stored Cross-Site Scripting vulnerability PluginOpsMailChimp Subscribe Forms Medium 5.9 2024-11-01 14:17:40 Deep Dive
CVE-2024-8870 Forms for Mailchimp by Optin Cat – Grow Your MailChimp List <= 2.5.7 - Reflected Cross-Site Scripting fatcatappsForms for Mailchimp by Optin Cat – Grow Your MailChimp List Medium 6.1 2024-10-26 03:13:52 Deep Dive
CVE-2024-49285 WordPress SSV MailChimp plugin <= 3.1.5 - Local File Inclusion vulnerability Jeroen BerkvensSSV MailChimp High 7.5 2024-10-17 17:17:05 Deep Dive
CVE-2022-4974 Freemius SDK <= 2.4.2 - Missing Authorization Checks dashlabsltdYASR – Yet Another Star Rating Plugin for WordPress Medium 6.3 2024-10-16 06:43:30 Deep Dive