Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1
CVE-2017-1000488
- EPSS 0.24%
- Published 03.01.2018 16:29:00
- Last modified 21.11.2024 03:04:50
Mautic version 2.1.0 - 2.11.0 is vulnerable to an inline JS XSS attack when using Mautic forms on a Mautic landing page using GET parameters to pre-populate the form.
8.8
CVE-2017-8874
- EPSS 0.12%
- Published 10.05.2017 05:29:00
- Last modified 20.04.2025 01:37:25
Multiple cross-site request forgery (CSRF) vulnerabilities in Mautic 1.4.1 allow remote attackers to hijack the authentication of users for requests that (1) delete email campaigns or (2) delete contacts.