Mailchimp Wp
by WordPress
Source repositories
CVEs (4)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2017-18577 | Med | 0.40 | 6.1 | 0.01 | Aug 22, 2019 | The mailchimp-for-wp plugin before 4.1.8 for WordPress has XSS via the return value of add_query_arg. | ||
| CVE-2024-8870 | Med | 0.33 | 6.1 | 0.00 | Oct 26, 2024 | The Forms for Mailchimp by Optin Cat – Grow Your MailChimp List plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 2.5.7. This makes it possible for… | ||
| CVE-2016-10871 | Med | 0.33 | 6.1 | 0.01 | Aug 13, 2019 | The mailchimp-for-wp plugin before 4.0.11 for WordPress has XSS on the integration settings page. | ||
| CVE-2024-7489 | Med | 0.22 | 4.4 | 0.00 | Oct 12, 2024 | The Forms for Mailchimp by Optin Cat – Grow Your MailChimp List plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the form color parameters in all versions up to, and including, 2.5.7 due to insufficient input sanitization and output escaping. This makes it… |
- risk 0.40cvss 6.1epss 0.01
The mailchimp-for-wp plugin before 4.1.8 for WordPress has XSS via the return value of add_query_arg.
- risk 0.33cvss 6.1epss 0.00
The Forms for Mailchimp by Optin Cat – Grow Your MailChimp List plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 2.5.7. This makes it possible for…
- risk 0.33cvss 6.1epss 0.01
The mailchimp-for-wp plugin before 4.0.11 for WordPress has XSS on the integration settings page.
- risk 0.22cvss 4.4epss 0.00
The Forms for Mailchimp by Optin Cat – Grow Your MailChimp List plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the form color parameters in all versions up to, and including, 2.5.7 due to insufficient input sanitization and output escaping. This makes it…