CVE-2024-8680
- EPSS 0.27%
- Veröffentlicht 21.09.2024 09:15:02
- Zuletzt bearbeitet 27.09.2024 13:53:47
The MC4WP: Mailchimp for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 4.9.16 due to insufficient input sanitization and output escaping. This makes it possible fo...
CVE-2024-8850
- EPSS 1.26%
- Veröffentlicht 19.09.2024 04:15:06
- Zuletzt bearbeitet 25.09.2024 18:49:53
The MC4WP: Mailchimp for WordPress plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'email' parameter when a placeholder such as {email} is used for the field in versions 4.9.9 to 4.9.16 due to insufficient input sanitizat...
CVE-2023-51682
- EPSS 0.21%
- Veröffentlicht 11.06.2024 16:15:16
- Zuletzt bearbeitet 21.11.2024 08:38:36
Missing Authorization vulnerability in ibericode MC4WP.This issue affects MC4WP: from n/a through 4.9.9.
CVE-2023-32517
- EPSS 0.2%
- Veröffentlicht 29.12.2023 10:15:10
- Zuletzt bearbeitet 21.11.2024 08:03:31
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in PluginOps MailChimp Subscribe Form, Optin Builder, PopUp Builder, Form Builder.This issue affects MailChimp Subscribe Form, Optin Builder, PopUp Builder, Form Builder: from n/a thro...