Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
patchstackThreatPressPATCHSTACK:AB3BBD2E5C747C274C1DB3FDBBA02D76
HistoryJan 19, 2018 - 12:00 a.m.

WordPress Email Subscribers & Newsletters plugin <=3.4.7 - Missing Function Level Access Control vulnerability

2018-01-1900:00:00
ThreatPress
patchstack.com
6

0.699 Medium

EPSS

Percentile

98.0%

JSON

Missing Function Level Access Control vulnerability that causes leakage of subscribers list found by ThreatPress in WordPress Email Subscribers & Newsletters plugin (versions <=3.4.7).

Solution

           Update the WordPress Email Subscribers & Newsletters plugin to the latest available version (at least 3.4.8).
CPENameOperatorVersion
email subscribers & newslettersle3.4.7

Related

cve 1
wpvulndb 1
checkpoint_advisories 1
prion 1
nvd 1
wpexploit 1
cvelist 1
cve
cve
CVE-2018-6015
2018-01-26 20:29:01
wpvulndb
wpvulndb
Email Subscribers & Newsletters < 3.4.8 - Unauthenticated Subscriber Download
2018-01-24 00:00:00
checkpoint_advisories
checkpoint_advisories
WordPress Email Subscribers Newsletters Plugin Information Disclosure (CVE-2018-6015)
2018-02-26 00:00:00
prion
prion
Design/Logic Flaw
2018-01-26 20:29:00
nvd
nvd
CVE-2018-6015
2018-01-26 20:29:01
wpexploit
wpexploit
Email Subscribers & Newsletters < 3.4.8 - Unauthenticated Subscriber Download
2018-01-24 00:00:00
cvelist
cvelist
CVE-2018-6015
2018-01-26 20:00:00

0.699 Medium

EPSS

Percentile

98.0%

JSON
Related for PATCHSTACK:AB3BBD2E5C747C274C1DB3FDBBA02D76
cve1wpvulndb1checkpoint_advisories1prion1nvd1wpexploit1cvelist1