CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-0218

The WP HTML Mail WordPress plugin is vulnerable to unauthorized access which allows unauthenticated attackers to retrieve and modify theme settings due to a missing capability check on the /themesettings REST-API endpoint found in the ~/includes/class-template-designer.php file, in versions up to and including 3.0.9. This makes it possible for attackers with no privileges to execute the endpoint and add malicious JavaScript to a vulnerable WordPress site.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.685

EPSS Ranking 98.6%

CVSS Severity

CVSS v3 Score 8.3

CVSS v2 Score 4.3

References

Products affected by CVE-2022-0218

Codemiq » Wordpress Email Template Designer » Version: 0.3

cpe:2.3:a:codemiq:wordpress_email_template_designer:0.3
Codemiq » Wordpress Email Template Designer » Version: 1.0

cpe:2.3:a:codemiq:wordpress_email_template_designer:1.0
Codemiq » Wordpress Email Template Designer » Version: 1.1

cpe:2.3:a:codemiq:wordpress_email_template_designer:1.1
Codemiq » Wordpress Email Template Designer » Version: 1.2

cpe:2.3:a:codemiq:wordpress_email_template_designer:1.2
Codemiq » Wordpress Email Template Designer » Version: 2.0

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.0
Codemiq » Wordpress Email Template Designer » Version: 2.0.1

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.0.1
Codemiq » Wordpress Email Template Designer » Version: 2.0.2

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.0.2
Codemiq » Wordpress Email Template Designer » Version: 2.1

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.1
Codemiq » Wordpress Email Template Designer » Version: 2.1.1

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.1.1
Codemiq » Wordpress Email Template Designer » Version: 2.2

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.2
Codemiq » Wordpress Email Template Designer » Version: 2.2.1

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.2.1
Codemiq » Wordpress Email Template Designer » Version: 2.2.3

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.2.3
Codemiq » Wordpress Email Template Designer » Version: 2.2.4

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.2.4
Codemiq » Wordpress Email Template Designer » Version: 2.2.5

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.2.5
Codemiq » Wordpress Email Template Designer » Version: 2.2.6

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.2.6
Codemiq » Wordpress Email Template Designer » Version: 2.3

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.3
Codemiq » Wordpress Email Template Designer » Version: 2.4

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.4
Codemiq » Wordpress Email Template Designer » Version: 2.5

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.5
Codemiq » Wordpress Email Template Designer » Version: 2.6

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.6
Codemiq » Wordpress Email Template Designer » Version: 2.7

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.7
Codemiq » Wordpress Email Template Designer » Version: 2.7.1

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.7.1
Codemiq » Wordpress Email Template Designer » Version: 2.7.3

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.7.3
Codemiq » Wordpress Email Template Designer » Version: 2.7.8

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.7.8
Codemiq » Wordpress Email Template Designer » Version: 2.7.9

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.7.9
Codemiq » Wordpress Email Template Designer » Version: 2.7.9.1

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.7.9.1
Codemiq » Wordpress Email Template Designer » Version: 2.8

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.8
Codemiq » Wordpress Email Template Designer » Version: 2.8.1

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.8.1
Codemiq » Wordpress Email Template Designer » Version: 2.8.2

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.8.2
Codemiq » Wordpress Email Template Designer » Version: 2.8.3

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.8.3
Codemiq » Wordpress Email Template Designer » Version: 2.8.3.1

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.8.3.1
Codemiq » Wordpress Email Template Designer » Version: 2.8.4

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.8.4
Codemiq » Wordpress Email Template Designer » Version: 2.8.4.1

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.8.4.1
Codemiq » Wordpress Email Template Designer » Version: 2.8.4.2

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.8.4.2
Codemiq » Wordpress Email Template Designer » Version: 2.9

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.9
Codemiq » Wordpress Email Template Designer » Version: 2.9.0.1

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.9.0.1
Codemiq » Wordpress Email Template Designer » Version: 2.9.0.2

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.9.0.2
Codemiq » Wordpress Email Template Designer » Version: 2.9.0.3

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.9.0.3
Codemiq » Wordpress Email Template Designer » Version: 2.9.1

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.9.1
Codemiq » Wordpress Email Template Designer » Version: 2.9.1.4

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.9.1.4
Codemiq » Wordpress Email Template Designer » Version: 2.9.2

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.9.2
Codemiq » Wordpress Email Template Designer » Version: 2.9.3

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.9.3
Codemiq » Wordpress Email Template Designer » Version: 2.9.4

cpe:2.3:a:codemiq:wordpress_email_template_designer:2.9.4
Codemiq » Wordpress Email Template Designer » Version: 3.0

cpe:2.3:a:codemiq:wordpress_email_template_designer:3.0
Codemiq » Wordpress Email Template Designer » Version: 3.0.1

cpe:2.3:a:codemiq:wordpress_email_template_designer:3.0.1
Codemiq » Wordpress Email Template Designer » Version: 3.0.2

cpe:2.3:a:codemiq:wordpress_email_template_designer:3.0.2
Codemiq » Wordpress Email Template Designer » Version: 3.0.3

cpe:2.3:a:codemiq:wordpress_email_template_designer:3.0.3
Codemiq » Wordpress Email Template Designer » Version: 3.0.4

cpe:2.3:a:codemiq:wordpress_email_template_designer:3.0.4
Codemiq » Wordpress Email Template Designer » Version: 3.0.5

cpe:2.3:a:codemiq:wordpress_email_template_designer:3.0.5
Codemiq » Wordpress Email Template Designer » Version: 3.0.6

cpe:2.3:a:codemiq:wordpress_email_template_designer:3.0.6
Codemiq » Wordpress Email Template Designer » Version: 3.0.8

cpe:2.3:a:codemiq:wordpress_email_template_designer:3.0.8
Codemiq » Wordpress Email Template Designer » Version: 3.0.9

cpe:2.3:a:codemiq:wordpress_email_template_designer:3.0.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-0218

Products

Pricing

Contact Us