CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-3264

The WP Ultimate Email Marketer plugin 1.1.0 and possibly earlier for Wordpress does not properly restrict access to (1) list/edit.php and (2) campaign/editCampaign.php, which allows remote attackers to modify list or campaign data.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 70.5%

CVSS Severity

CVSS v2 Score 6.4

References

Products affected by CVE-2013-3264

Smackcoders » Wp Ultimate Email Marketer Plugin » Version: 1.0.0

cpe:2.3:a:smackcoders:wp_ultimate_email_marketer_plugin:1.0.0
Smackcoders » Wp Ultimate Email Marketer Plugin » Version: 1.0.1

cpe:2.3:a:smackcoders:wp_ultimate_email_marketer_plugin:1.0.1
Smackcoders » Wp Ultimate Email Marketer Plugin » Version: 1.0.2

cpe:2.3:a:smackcoders:wp_ultimate_email_marketer_plugin:1.0.2
Smackcoders » Wp Ultimate Email Marketer Plugin » Version: 1.0.3

cpe:2.3:a:smackcoders:wp_ultimate_email_marketer_plugin:1.0.3
Smackcoders » Wp Ultimate Email Marketer Plugin » Version: 1.1.0

cpe:2.3:a:smackcoders:wp_ultimate_email_marketer_plugin:1.1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-3264

Products

Pricing

Contact Us