| Max CVSS | 7.5 | Min CVSS | 3.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-1002006 | 3.5 |
These vulnerabilities require administrative privileges to exploit. There is an XSS vulnerability in integration-contact-form.html.php:14: via POST request variable classes
|
30-12-2018 - 00:18 | 03-12-2018 - 16:29 | |
| CVE-2018-1002005 | 3.5 |
These vulnerabilities require administrative privileges to exploit. There is an XSS vulnerability in bft_list.html.php:43: via the filter_signup_date parameter.
|
28-12-2018 - 14:08 | 03-12-2018 - 16:29 | |
| CVE-2018-1002000 | 6.5 |
There is blind SQL injection in WordPress Arigato Autoresponder and Newsletter v2.5.1.8 These vulnerabilities require administrative privileges to exploit. There is an exploitable blind SQL injection vulnerability via the del_ids variable by POST req
|
27-12-2018 - 21:06 | 03-12-2018 - 16:29 | |
| CVE-2018-1002008 | 3.5 |
There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit. There is an XSS vulnerability in list-user.html.php:4: via GET request offset variabl
|
27-12-2018 - 17:51 | 03-12-2018 - 16:29 | |
| CVE-2018-1002007 | 3.5 |
There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit. There is an XSS vulnerability in integration-contact-form.html.php:15: via POST reque
|
27-12-2018 - 17:51 | 03-12-2018 - 16:29 | |
| CVE-2018-1002004 | 3.5 |
There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit.
|
27-12-2018 - 17:50 | 03-12-2018 - 16:29 | |
| CVE-2018-1002002 | 3.5 |
There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit.
|
27-12-2018 - 17:47 | 03-12-2018 - 16:29 | |
| CVE-2018-1002003 | 3.5 |
There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit.
|
27-12-2018 - 17:47 | 03-12-2018 - 16:29 | |
| CVE-2018-1002001 | 3.5 |
There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit.
|
27-12-2018 - 17:36 | 03-12-2018 - 16:29 | |
| CVE-2018-1002009 | 3.5 |
There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit. There is an XSS vulnerability in unsubscribe.html.php:3: via GET reuqest to the email
|
27-12-2018 - 17:26 | 03-12-2018 - 16:29 | |
| CVE-2018-18461 | 7.5 |
The Arigato Autoresponder and Newsletter (aka bft-autoresponder) v2.5.1.7 plugin for WordPress allows remote attackers to execute arbitrary code via PHP code in attachments[] data to models/attachment.php.
|
30-11-2018 - 19:26 | 18-10-2018 - 06:29 |