Ibericode: Security Vulnerabilities
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ibericode HTML Forms allows Stored XSS.This issue affects HTML Forms: from n/a through 1.3.28.
CVSS Score
5.9
EPSS Score
0.001
Published
2023-12-28
The HTML Forms WordPress plugin before 1.3.25 does not properly properly escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users
CVSS Score
7.2
EPSS Score
0.243
Published
2022-11-28
The mailchimp-for-wp plugin before 4.1.8 for WordPress has XSS via the return value of add_query_arg.
CVSS Score
6.1
EPSS Score
0.003
Published
2019-08-22
The mailchimp-for-wp plugin before 4.0.11 for WordPress has XSS on the integration settings page.
CVSS Score
6.1
EPSS Score
0.002
Published
2019-08-13
Page 2