All 6 CVE vulnerabilities found in Email Subscribers & Newsletters, with AI-generated Chinese analysis, references, and POCs.
Vendor: icegram
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-66055 | WordPress Email Subscribers & Newsletters plugin <= 5.9.10 - PHP Object Injection vulnerability CWE-502 | 8.8 | - | 2025-11-21 |
| CVE-2024-37252 | WordPress Email Subscribers by Icegram Express plugin <= 5.7.25 - SQL Injection vulnerability CWE-89 | 9.3 | Critical | 2024-06-26 |
| CVE-2024-31352 | WordPress Icegram Express plugin <= 5.7.13 - Broken Access Control vulnerability CWE-862 | 5.3 | Medium | 2024-06-09 |
| CVE-2024-22300 | WordPress Icegram Express plugin <= 5.7.11 - Reflected Cross Site Scripting (XSS) vulnerability CWE-79 | 7.1 | High | 2024-03-27 |
| CVE-2022-0439 | Email Subscribers & Newsletters < 5.3.2 - Subscriber+ Blind SQL injection | 8.0 | - | 2022-03-07 |
| CVE-2018-0602 | WordPress Email Subscribers & Newsletters 跨站脚本漏洞 | 6.1 | - | 2018-06-26 |
All 6 known CVE vulnerabilities affecting Email Subscribers & Newsletters with full Chinese analysis, references, and POCs where available.