Skip to main content

Arigato Autoresponder And Newsletter

16 CVEs product

Monthly

CVE-2023-47686 HIGH This Week

Cross-Site Request Forgery (CSRF) vulnerability in Kiboko Labs Arigato Autoresponder and Newsletter plugin <= 2.7.2.2 versions. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Arigato Autoresponder And Newsletter
NVD
CVSS 3.1
8.8
EPSS
0.3%
CVE-2023-25031 MEDIUM This Month

Auth. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Arigato Autoresponder And Newsletter
NVD
CVSS 3.1
4.8
EPSS
0.4%
CVE-2023-25020 MEDIUM This Month

Unauth. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Arigato Autoresponder And Newsletter
NVD
CVSS 3.1
6.1
EPSS
0.4%
CVE-2023-25061 MEDIUM This Month

Auth. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Arigato Autoresponder And Newsletter
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-0543 MEDIUM POC This Month

The Arigato Autoresponder and Newsletter WordPress plugin before 2.1.7.2 does not sanitize and escape some of its settings, which could allow high-privilege users such as admin to perform Stored. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Arigato Autoresponder And Newsletter
NVD WPScan
CVSS 3.1
4.8
EPSS
0.5%
CVE-2018-1002009 MEDIUM POC This Month

There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS PHP Arigato Autoresponder And Newsletter
NVD Exploit-DB
CVSS 3.0
4.8
EPSS
2.6%
CVE-2018-1002008 MEDIUM POC This Month

There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS PHP Arigato Autoresponder And Newsletter
NVD Exploit-DB
CVSS 3.0
4.8
EPSS
2.6%
CVE-2018-1002007 MEDIUM POC This Month

There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS PHP Arigato Autoresponder And Newsletter
NVD Exploit-DB
CVSS 3.0
4.8
EPSS
2.6%
CVE-2018-1002006 MEDIUM POC This Month

These vulnerabilities require administrative privileges to exploit. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Arigato Autoresponder And Newsletter
NVD Exploit-DB
CVSS 3.0
4.8
EPSS
2.6%
CVE-2018-1002005 MEDIUM POC This Month

These vulnerabilities require administrative privileges to exploit. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Arigato Autoresponder And Newsletter
NVD Exploit-DB
CVSS 3.0
4.8
EPSS
3.1%
CVE-2018-1002004 MEDIUM POC This Month

There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Arigato Autoresponder And Newsletter
NVD Exploit-DB
CVSS 3.0
4.8
EPSS
2.9%
CVE-2018-1002003 MEDIUM POC This Month

There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Arigato Autoresponder And Newsletter
NVD Exploit-DB
CVSS 3.0
4.8
EPSS
2.9%
CVE-2018-1002002 MEDIUM POC This Month

There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Arigato Autoresponder And Newsletter
NVD Exploit-DB
CVSS 3.0
4.8
EPSS
2.9%
CVE-2018-1002001 MEDIUM POC This Month

There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Arigato Autoresponder And Newsletter
NVD Exploit-DB
CVSS 3.0
4.8
EPSS
2.9%
CVE-2018-1002000 HIGH POC This Week

There is blind SQL injection in WordPress Arigato Autoresponder and Newsletter v2.5.1.8 These vulnerabilities require administrative privileges to exploit. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi WordPress Arigato Autoresponder And Newsletter
NVD Exploit-DB
CVSS 3.0
7.2
EPSS
4.4%
CVE-2018-18461 CRITICAL POC Act Now

The Arigato Autoresponder and Newsletter (aka bft-autoresponder) v2.5.1.7 plugin for WordPress allows remote attackers to execute arbitrary code via PHP code in attachments[] data to. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Code Injection WordPress RCE PHP Arigato Autoresponder And Newsletter
NVD GitHub
CVSS 3.0
9.8
EPSS
4.2%
EPSS 0% CVSS 8.8
HIGH This Week

Cross-Site Request Forgery (CSRF) vulnerability in Kiboko Labs Arigato Autoresponder and Newsletter plugin <= 2.7.2.2 versions. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Arigato Autoresponder And Newsletter
NVD
EPSS 0% CVSS 4.8
MEDIUM This Month

Auth. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Arigato Autoresponder And Newsletter
NVD
EPSS 0% CVSS 6.1
MEDIUM This Month

Unauth. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Arigato Autoresponder And Newsletter
NVD
EPSS 0% CVSS 5.4
MEDIUM This Month

Auth. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Arigato Autoresponder And Newsletter
NVD
EPSS 0% CVSS 4.8
MEDIUM POC This Month

The Arigato Autoresponder and Newsletter WordPress plugin before 2.1.7.2 does not sanitize and escape some of its settings, which could allow high-privilege users such as admin to perform Stored. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Arigato Autoresponder And Newsletter
NVD WPScan
EPSS 3% CVSS 4.8
MEDIUM POC This Month

There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS PHP +1
NVD Exploit-DB
EPSS 3% CVSS 4.8
MEDIUM POC This Month

There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS PHP +1
NVD Exploit-DB
EPSS 3% CVSS 4.8
MEDIUM POC This Month

There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS PHP +1
NVD Exploit-DB
EPSS 3% CVSS 4.8
MEDIUM POC This Month

These vulnerabilities require administrative privileges to exploit. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Arigato Autoresponder And Newsletter
NVD Exploit-DB
EPSS 3% CVSS 4.8
MEDIUM POC This Month

These vulnerabilities require administrative privileges to exploit. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Arigato Autoresponder And Newsletter
NVD Exploit-DB
EPSS 3% CVSS 4.8
MEDIUM POC This Month

There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Arigato Autoresponder And Newsletter
NVD Exploit-DB
EPSS 3% CVSS 4.8
MEDIUM POC This Month

There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Arigato Autoresponder And Newsletter
NVD Exploit-DB
EPSS 3% CVSS 4.8
MEDIUM POC This Month

There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Arigato Autoresponder And Newsletter
NVD Exploit-DB
EPSS 3% CVSS 4.8
MEDIUM POC This Month

There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Arigato Autoresponder And Newsletter
NVD Exploit-DB
EPSS 4% CVSS 7.2
HIGH POC This Week

There is blind SQL injection in WordPress Arigato Autoresponder and Newsletter v2.5.1.8 These vulnerabilities require administrative privileges to exploit. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi WordPress Arigato Autoresponder And Newsletter
NVD Exploit-DB
EPSS 4% CVSS 9.8
CRITICAL POC Act Now

The Arigato Autoresponder and Newsletter (aka bft-autoresponder) v2.5.1.7 plugin for WordPress allows remote attackers to execute arbitrary code via PHP code in attachments[] data to. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Code Injection WordPress RCE +2
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy