| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2022-46821 | WordPress Emails & Newsletters with Jackmail Plugin <= 1.2.22 is vulnerable to CSV Injection | Jackmail & Sarbacane | Emails & Newsletters with Jackmail | 高危 | - | 2023-11-07 16:47:17 | Deep Dive |
| CVE-2023-5660 | SendPress Newsletters <= 1.22.3.31 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode | brewlabs | SendPress Newsletters | Medium | 6.4 | 2023-11-07 11:31:09 | Deep Dive |
| CVE-2023-5414 | Icegram Express <= 5.6.23 - Authenticated (Administrator+) Directory Traversal to Arbitrary File Read | icegram | Email Subscribers & Newsletters – Email Marketing, Post Notifications & Newsletter Plugin for WordPress | Critical | 9.1 | 2023-10-20 06:35:20 | Deep Dive |
| CVE-2023-41730 | WordPress SendPress Newsletters plugin <= 1.26.1.20 - Cross Site Request Forgery (CSRF) vulnerability | brewlabs | SendPress Newsletters | Medium | 4.3 | 2023-10-10 07:47:11 | Deep Dive |
| CVE-2023-41729 | WordPress SendPress Newsletters plugin <= 1.26.1.20 - Cross Site Scripting (XSS) vulnerability | brewlabs | SendPress Newsletters | Medium | 5.9 | 2023-10-02 07:39:34 | Deep Dive |
| CVE-2023-3407 | Subscribe2 <= 10.40 - Cross-Site Request Forgery | wedevs | Subscribe2 – Form, Email Subscribers & Newsletters | Medium | 4.3 | 2023-06-28 02:34:23 | Deep Dive |
| CVE-2023-1844 | Subscribe2 <= 10.40 - Missing Authorization | wedevs | Subscribe2 – Form, Email Subscribers & Newsletters | Medium | 4.3 | 2023-06-28 02:34:23 | Deep Dive |
| CVE-2022-0439 | Email Subscribers & Newsletters < 5.3.2 - Subscriber+ Blind SQL injection | Unknown | Email Subscribers & Newsletters | 高危 | - | 2022-03-07 08:16:41 | Deep Dive |
| CVE-2021-34634 | Nifty Newsletters <= 4.0.23 - Cross-Site Request Forgery to Stored Cross-Site Scripting | SolaPlugins | Nifty Newsletters | High | 8.8 | 2021-08-05 20:13:56 | Deep Dive |
| CVE-2021-20743 | Ec-cube 跨站脚本漏洞 | EC-CUBE CO.,LTD. | EC-CUBE Email newsletters management plugin (for EC-CUBE 3.0 series) | 中危 | - | 2021-06-22 01:35:56 | Deep Dive |
| CVE-2020-5780 | WordPress 访问控制错误漏洞 | - | Icegram Email Subscribers & Newsletters Plugin for WordPress | 中危 | - | 2020-09-10 14:10:03 | Deep Dive |
| CVE-2020-5767 | WordPress Email Subscribers & Newsletters 跨站请求伪造漏洞 | - | Icegram Email Subscribers & Newsletters Plugin for WordPress | 中危 | - | 2020-07-17 21:22:59 | Deep Dive |
| CVE-2020-5768 | WordPress Email Subscribers & Newsletters SQL注入漏洞 | - | Icegram Email Subscribers & Newsletters Plugin for WordPress | 中危 | - | 2020-07-17 21:22:53 | Deep Dive |
| CVE-2018-0602 | WordPress Email Subscribers & Newsletters 跨站脚本漏洞 | icegram | Email Subscribers & Newsletters | 中危 | - | 2018-06-26 14:00:00 | Deep Dive |