VYPR

Email2image

by David Alkire

CVEs (2)

  • CVE-2024-3075Apr 26, 2024
    risk 0.00cvss epss 0.01

    The MM-email2image WordPress plugin through 0.2.5 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site…

  • CVE-2013-0257Mar 27, 2013
    risk 0.00cvss epss 0.01

    The email2image module 6.x-1.x and 6.x-2.x for Drupal does not properly restrict access to nodes, which allows remote attackers to read images of user email addresses and email fields.