cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2023-0543,https://securityvulnerability.io/vulnerability/CVE-2023-0543,Arigato Autoresponder and Newsletter < 2.1.7.2 - Admin+ Stored XSS,"The Arigato Autoresponder and Newsletter WordPress plugin before 2.1.7.2 does not sanitize and escape some of its settings, which could allow high-privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.",Wordpress,Arigato Autoresponder and Newsletter,4.8,MEDIUM,0.000539999979082495,false,,false,false,false,,false,false,2023-02-27T16:15:00.000Z,0
CVE-2018-1002000,https://securityvulnerability.io/vulnerability/CVE-2018-1002000,,There is blind SQL injection in WordPress Arigato Autoresponder and Newsletter v2.5.1.8 These vulnerabilities require administrative privileges to exploit. There is an exploitable blind SQL injection vulnerability via the del_ids variable by POST request.,Wordpress,Arigato Autoresponder And Newsletter,7.2,HIGH,0.003819999983534217,false,,false,false,false,,false,false,2018-12-03T16:00:00.000Z,0
CVE-2018-1002001,https://securityvulnerability.io/vulnerability/CVE-2018-1002001,,There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit.,Wordpress,Arigato Autoresponder And Newsletter,4.8,MEDIUM,0.0015999999595806003,false,,false,false,false,,false,false,2018-12-03T16:00:00.000Z,0
CVE-2018-1002002,https://securityvulnerability.io/vulnerability/CVE-2018-1002002,,There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit.,Wordpress,Arigato Autoresponder And Newsletter,4.8,MEDIUM,0.0015999999595806003,false,,false,false,false,,false,false,2018-12-03T16:00:00.000Z,0
CVE-2018-1002007,https://securityvulnerability.io/vulnerability/CVE-2018-1002007,,There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit. There is an XSS vulnerability in integration-contact-form.html.php:15: via POST request variable html_id.,Wordpress,Arigato Autoresponder And Newsletter,4.8,MEDIUM,0.0015999999595806003,false,,false,false,false,,false,false,2018-12-03T16:00:00.000Z,0
CVE-2018-1002009,https://securityvulnerability.io/vulnerability/CVE-2018-1002009,,There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit. There is an XSS vulnerability in unsubscribe.html.php:3: via GET reuqest to the email variable.,Wordpress,Arigato Autoresponder And Newsletter,4.8,MEDIUM,0.0015999999595806003,false,,false,false,false,,false,false,2018-12-03T16:00:00.000Z,0
CVE-2018-1002003,https://securityvulnerability.io/vulnerability/CVE-2018-1002003,,There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit.,Wordpress,Arigato Autoresponder And Newsletter,4.8,MEDIUM,0.0015999999595806003,false,,false,false,false,,false,false,2018-12-03T16:00:00.000Z,0
CVE-2018-1002004,https://securityvulnerability.io/vulnerability/CVE-2018-1002004,,There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit.,Wordpress,Arigato Autoresponder And Newsletter,4.8,MEDIUM,0.0015999999595806003,false,,false,false,false,,false,false,2018-12-03T16:00:00.000Z,0
CVE-2018-1002008,https://securityvulnerability.io/vulnerability/CVE-2018-1002008,,There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit. There is an XSS vulnerability in list-user.html.php:4: via GET request offset variable.,Wordpress,Arigato Autoresponder And Newsletter,4.8,MEDIUM,0.0015999999595806003,false,,false,false,false,,false,false,2018-12-03T16:00:00.000Z,0
CVE-2018-18461,https://securityvulnerability.io/vulnerability/CVE-2018-18461,,The Arigato Autoresponder and Newsletter (aka bft-autoresponder) v2.5.1.7 plugin for WordPress allows remote attackers to execute arbitrary code via PHP code in attachments[] data to models/attachment.php.,Wordpress,Arigato Autoresponder And Newsletter,9.8,CRITICAL,0.037050001323223114,false,,false,false,false,,false,false,2018-10-18T06:00:00.000Z,0