Skip to main content

Envialosimple

2 CVEs product

Monthly

CVE-2024-2125 HIGH This Week

The EnvíaloSimple: Email Marketing y Newsletters plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.3. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

File Upload WordPress CSRF Envialosimple
NVD VulDB
CVSS 3.1
8.8
EPSS
0.3%
CVE-2023-51414 CRITICAL Act Now

Deserialization of Untrusted Data vulnerability in EnvialoSimple EnvíaloSimple: Email Marketing y Newsletters.1. Rated critical severity (CVSS 9.6), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Deserialization Envialosimple
NVD
CVSS 3.1
9.6
EPSS
0.6%
EPSS 0% CVSS 8.8
HIGH This Week

The EnvíaloSimple: Email Marketing y Newsletters plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.3. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

File Upload WordPress CSRF +1
NVD VulDB
EPSS 1% CVSS 9.6
CRITICAL Act Now

Deserialization of Untrusted Data vulnerability in EnvialoSimple EnvíaloSimple: Email Marketing y Newsletters.1. Rated critical severity (CVSS 9.6), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Deserialization Envialosimple
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy