Show filters
45 Total Results
Displaying 41-45 of 45
Sort by:
Attacker Value
Unknown

CVE-2019-15318

Disclosure Date: August 22, 2019 (last updated November 27, 2024)
The yikes-inc-easy-mailchimp-extender plugin before 6.5.3 for WordPress has code injection via the admin input field.
0
0
Attacker Value
Unknown

CVE-2016-10871

Disclosure Date: August 13, 2019 (last updated November 27, 2024)
The mailchimp-for-wp plugin before 4.0.11 for WordPress has XSS on the integration settings page.
0
0
Attacker Value
Unknown

CVE-2015-5488

Disclosure Date: August 18, 2015 (last updated October 05, 2023)
Cross-site scripting (XSS) vulnerability in the MailChimp Signup submodule in the MailChimp module 7.x-3.x before 7.x-3.3 for Drupal allows remote authenticated users with the "administer mailchimp" permission to inject arbitrary web script or HTML via unspecified vectors.
0
0
Attacker Value
Unknown

CVE-2014-7152

Disclosure Date: September 26, 2014 (last updated October 05, 2023)
Cross-site scripting (XSS) vulnerability in the Easy MailChimp Forms plugin 3.0 through 5.0.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the update_options action to wp-admin/admin-ajax.php.
0
0
Attacker Value
Unknown

CVE-2012-5551

Disclosure Date: December 03, 2012 (last updated October 05, 2023)
Multiple cross-site scripting (XSS) vulnerabilities in the MailChimp module 7.x-2.x before 7.x-2.7 for Drupal allow remote attackers to inject arbitrary web script or HTML via vectors related to (1) a predictable "webhook URL key" and (2) improper sanitization of "Webhook variables from POST requests."
0
0
View More Topics  < Previous