Vulnerabilities for Newsletters (...) - CXSECURITY.COM

Vulnerabilities for 'Newsletters'

2019-08-22

CVE-2018-20987

CWE-502

The newsletters-lite plugin before 4.6.8.6 for WordPress has PHP object injection.

2019-08-09

CVE-2019-14787

CWE-79

The Tribulant Newsletters plugin before 4.6.19 for WordPress allows XSS via the wp-admin/admin-ajax.php?action=newsletters_load_new_editor contentarea parameter.

>>> Vendor: Tribulant 5 Products

Tibulant slideshow gallery

Slideshow gallery

Newsletters

Copyright 2024, cxsecurity.com