Show filters
17 Total Results
Displaying 11-17 of 17
Sort by:
Attacker Value
Unknown

CVE-2018-1002008

Disclosure Date: December 03, 2018 (last updated November 27, 2024)
There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit. There is an XSS vulnerability in list-user.html.php:4: via GET request offset variable.
0
0
Attacker Value
Unknown

CVE-2018-1002000

Disclosure Date: December 03, 2018 (last updated November 27, 2024)
There is blind SQL injection in WordPress Arigato Autoresponder and Newsletter v2.5.1.8 These vulnerabilities require administrative privileges to exploit. There is an exploitable blind SQL injection vulnerability via the del_ids variable by POST request.
0
0
Attacker Value
Unknown

CVE-2018-1002004

Disclosure Date: December 03, 2018 (last updated November 27, 2024)
There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit.
0
0
Attacker Value
Unknown

CVE-2018-1002009

Disclosure Date: December 03, 2018 (last updated November 27, 2024)
There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit. There is an XSS vulnerability in unsubscribe.html.php:3: via GET reuqest to the email variable.
0
0
Attacker Value
Unknown

CVE-2018-1002003

Disclosure Date: December 03, 2018 (last updated November 27, 2024)
There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit.
0
0
Attacker Value
Unknown

CVE-2018-1002005

Disclosure Date: December 03, 2018 (last updated November 27, 2024)
These vulnerabilities require administrative privileges to exploit. There is an XSS vulnerability in bft_list.html.php:43: via the filter_signup_date parameter.
0
0
Attacker Value
Unknown

CVE-2018-18461

Disclosure Date: October 18, 2018 (last updated November 27, 2024)
The Arigato Autoresponder and Newsletter (aka bft-autoresponder) v2.5.1.7 plugin for WordPress allows remote attackers to execute arbitrary code via PHP code in attachments[] data to models/attachment.php.
0
0
View More Topics  < Previous