VYPR

Mailchimp Wp

by WordPress

Source repositories

CVEs (4)

  • CVE-2017-18577MedAug 22, 2019
    risk 0.40cvss 6.1epss 0.01

    The mailchimp-for-wp plugin before 4.1.8 for WordPress has XSS via the return value of add_query_arg.

  • CVE-2024-8870MedOct 26, 2024
    risk 0.33cvss 6.1epss 0.00

    The Forms for Mailchimp by Optin Cat – Grow Your MailChimp List plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 2.5.7. This makes it possible for…

  • CVE-2016-10871MedAug 13, 2019
    risk 0.33cvss 6.1epss 0.01

    The mailchimp-for-wp plugin before 4.0.11 for WordPress has XSS on the integration settings page.

  • CVE-2024-7489MedOct 12, 2024
    risk 0.22cvss 4.4epss 0.00

    The Forms for Mailchimp by Optin Cat – Grow Your MailChimp List plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the form color parameters in all versions up to, and including, 2.5.7 due to insufficient input sanitization and output escaping. This makes it…