| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-1781 | MC4WP: Mailchimp for WordPress <= 4.11.1 - Missing Authorization to Unauthenticated Arbitrary Subscription Deletion | dvankooten | MC4WP: Mailchimp for WordPress | Medium | 6.5 | 2026-03-11 01:22:04 | Deep Dive |
| CVE-2024-9704 | Social Sharing (by Danny) <= 1.3.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode | dvankooten | Social Sharing (by Danny) | Medium | 6.4 | 2024-10-12 06:51:13 | Deep Dive |
| CVE-2024-9210 | MC4WP: Mailchimp Top Bar <= 1.6.0 - Reflected Cross-Site Scripting | dvankooten | MC4WP: Mailchimp Top Bar | Medium | 6.1 | 2024-10-02 07:35:29 | Deep Dive |
| CVE-2024-8662 | Koko Analytics <= 1.3.12 - Reflected Cross-Site Scripting | dvankooten | Koko Analytics – Privacy Friendly Statistics for WordPress | Medium | 6.1 | 2024-09-24 01:56:48 | Deep Dive |
| CVE-2024-8680 | MailChimp for Wordpress <= 4.9.16 - Authenticated (Administrator+) Stored Cross-Site Scripting | dvankooten | MC4WP: Mailchimp for WordPress | Medium | 4.4 | 2024-09-21 08:35:55 | Deep Dive |
| CVE-2024-8850 | MC4WP: Mailchimp for WordPress 4.9.9 - 4.9.16 - Reflected Cross-Site Scripting | dvankooten | MC4WP: Mailchimp for WordPress | Medium | 6.1 | 2024-09-19 03:59:14 | Deep Dive |