Search Results | AttackerKB

17 Total Results

Displaying 1-10 of 17

Attacker Value

Unknown

CVE-2024-34823

Disclosure Date: May 14, 2024 (last updated May 15, 2024)

Cross-Site Request Forgery (CSRF) vulnerability in Kiboko Labs Arigato Autoresponder and Newsletter.This issue affects Arigato Autoresponder and Newsletter: from n/a through 2.7.2.3.

Attacker Value

Unknown

CVE-2023-47686

Disclosure Date: November 16, 2023 (last updated November 23, 2023)

Cross-Site Request Forgery (CSRF) vulnerability in Kiboko Labs Arigato Autoresponder and Newsletter plugin <= 2.7.2.2 versions.

Attacker Value

Unknown

CVE-2023-25031

Disclosure Date: April 07, 2023 (last updated November 08, 2023)

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Kiboko Labs Arigato Autoresponder and Newsletter plugin <= 2.7.1 versions.

Attack Vector: Network Privileges: High User Interaction: Required

Attacker Value

Unknown

CVE-2023-25020

Disclosure Date: April 07, 2023 (last updated November 08, 2023)

Unauth. Stored Cross-Site Scripting (XSS) vulnerability in Kiboko Labs Arigato Autoresponder and Newsletter plugin <= 2.7.1.1 versions.

Attack Vector: Network Privileges: None User Interaction: Required

Attacker Value

Unknown

CVE-2023-25061

Disclosure Date: April 07, 2023 (last updated November 08, 2023)

Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Kiboko Labs Arigato Autoresponder and Newsletter plugin <= 2.7.1.1 versions.

Attack Vector: Network Privileges: Low User Interaction: Required

Attacker Value

Unknown

CVE-2023-0543

Disclosure Date: February 27, 2023 (last updated October 08, 2023)

The Arigato Autoresponder and Newsletter WordPress plugin before 2.1.7.2 does not sanitize and escape some of its settings, which could allow high-privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.

Attack Vector: Network Privileges: High User Interaction: Required

Attacker Value

Unknown

CVE-2018-1002007

Disclosure Date: December 03, 2018 (last updated November 27, 2024)

There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit. There is an XSS vulnerability in integration-contact-form.html.php:15: via POST request variable html_id.

Attacker Value

Unknown

CVE-2018-1002001

Disclosure Date: December 03, 2018 (last updated November 27, 2024)

There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit.

Attacker Value

Unknown

CVE-2018-1002002

Disclosure Date: December 03, 2018 (last updated November 27, 2024)

There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit.

Attacker Value

Unknown

CVE-2018-1002006

Disclosure Date: December 03, 2018 (last updated November 27, 2024)

These vulnerabilities require administrative privileges to exploit. There is an XSS vulnerability in integration-contact-form.html.php:14: via POST request variable classes

17 Total Results

Displaying 1-10 of 17

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Quick Cookie Notification