Max CVSS 7.5 Min CVSS 3.5 Total Count2
IDCVSSSummaryLast (major) updatePublished
CVE-2018-1002006 3.5
These vulnerabilities require administrative privileges to exploit. There is an XSS vulnerability in integration-contact-form.html.php:14: via POST request variable classes
30-12-2018 - 00:18 03-12-2018 - 16:29
CVE-2018-1002005 3.5
These vulnerabilities require administrative privileges to exploit. There is an XSS vulnerability in bft_list.html.php:43: via the filter_signup_date parameter.
28-12-2018 - 14:08 03-12-2018 - 16:29
CVE-2018-1002000 6.5
There is blind SQL injection in WordPress Arigato Autoresponder and Newsletter v2.5.1.8 These vulnerabilities require administrative privileges to exploit. There is an exploitable blind SQL injection vulnerability via the del_ids variable by POST req
27-12-2018 - 21:06 03-12-2018 - 16:29
CVE-2018-1002008 3.5
There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit. There is an XSS vulnerability in list-user.html.php:4: via GET request offset variabl
27-12-2018 - 17:51 03-12-2018 - 16:29
CVE-2018-1002007 3.5
There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit. There is an XSS vulnerability in integration-contact-form.html.php:15: via POST reque
27-12-2018 - 17:51 03-12-2018 - 16:29
CVE-2018-1002004 3.5
There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit.
27-12-2018 - 17:50 03-12-2018 - 16:29
CVE-2018-1002002 3.5
There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit.
27-12-2018 - 17:47 03-12-2018 - 16:29
CVE-2018-1002003 3.5
There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit.
27-12-2018 - 17:47 03-12-2018 - 16:29
CVE-2018-1002001 3.5
There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit.
27-12-2018 - 17:36 03-12-2018 - 16:29
CVE-2018-1002009 3.5
There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit. There is an XSS vulnerability in unsubscribe.html.php:3: via GET reuqest to the email
27-12-2018 - 17:26 03-12-2018 - 16:29
CVE-2018-18461 7.5
The Arigato Autoresponder and Newsletter (aka bft-autoresponder) v2.5.1.7 plugin for WordPress allows remote attackers to execute arbitrary code via PHP code in attachments[] data to models/attachment.php.
30-11-2018 - 19:26 18-10-2018 - 06:29
Back to Top Mark selected
Back to Top