Browse all 5 CVE security advisories affecting SendPulse. AI-powered Chinese analysis, POCs, and references for each vulnerability.
| CVE ID | Title | CVSS | Severity | Paused |
|---|---|---|---|---|
| CVE-2025-67948 | WordPress SendPulse Email Marketing Newsletter plugin <= 2.2.1 - Sensitive Data Exposure vulnerability — SendPulse Email Marketing NewsletterCWE-497 | 7.5AI | HighAI | 2025-12-16 |
| CVE-2025-47547 | WordPress SendPulse Email Marketing Newsletter plugin <= 2.1.6 - Cross Site Scripting (XSS) Vulnerability — SendPulse Email Marketing NewsletterCWE-79 | 6.5 | Medium | 2025-05-07 |
| CVE-2025-22662 | WordPress SendPulse Email Marketing Newsletter plugin <= 2.1.5 - Cross Site Scripting (XSS) vulnerability — SendPulse Email Marketing NewsletterCWE-79 | 6.5 | Medium | 2025-02-04 |
| CVE-2024-9184 | SendPulse Free Web Push <= 1.3.6 - Unauthenticated Stored Cross-Site Scripting — SendPulse Free Web PushCWE-79 | 7.2 | High | 2024-10-17 |
| CVE-2023-45274 | WordPress SendPulse Free Web Push Plugin <= 1.3.1 is vulnerable to Cross Site Request Forgery (CSRF) — SendPulse Free Web PushCWE-352 | 4.3 | Medium | 2023-10-16 |
This page lists every published CVE security advisory associated with SendPulse. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.