CVE-2018-1002005
- EPSS 0.27%
- Veröffentlicht 03.12.2018 16:29:00
- Zuletzt bearbeitet 21.11.2024 03:40:37
These vulnerabilities require administrative privileges to exploit. There is an XSS vulnerability in bft_list.html.php:43: via the filter_signup_date parameter.
CVE-2018-1002004
- EPSS 0.23%
- Veröffentlicht 03.12.2018 16:29:00
- Zuletzt bearbeitet 21.11.2024 03:40:37
There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit.
CVE-2018-1002003
- EPSS 0.23%
- Veröffentlicht 03.12.2018 16:29:00
- Zuletzt bearbeitet 21.11.2024 03:40:37
There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit.
CVE-2018-1002002
- EPSS 0.23%
- Veröffentlicht 03.12.2018 16:29:00
- Zuletzt bearbeitet 21.11.2024 03:40:37
There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit.
CVE-2018-1002001
- EPSS 0.23%
- Veröffentlicht 03.12.2018 16:29:00
- Zuletzt bearbeitet 21.11.2024 03:40:37
There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit.
CVE-2018-1002000
- EPSS 4.06%
- Veröffentlicht 03.12.2018 16:29:00
- Zuletzt bearbeitet 21.11.2024 03:40:36
There is blind SQL injection in WordPress Arigato Autoresponder and Newsletter v2.5.1.8 These vulnerabilities require administrative privileges to exploit. There is an exploitable blind SQL injection vulnerability via the del_ids variable by POST req...
CVE-2018-18461
- EPSS 11.35%
- Veröffentlicht 18.10.2018 06:29:01
- Zuletzt bearbeitet 21.11.2024 03:55:59
The Arigato Autoresponder and Newsletter (aka bft-autoresponder) v2.5.1.7 plugin for WordPress allows remote attackers to execute arbitrary code via PHP code in attachments[] data to models/attachment.php.