Email Subscribers & Newsletters
Approved changes feed: RSS · Atom
cpe:2.3:a:icegram:email_subscribers_&_newsletters:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Icegram (4ca468ee-dbe6-5dc5-9b8a-a191dfaeac5f) |
|---|---|
| Product | Email Subscribers & Newsletters (31756074-9587-59a9-8f60-f55c712d3c25) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2025-66055 |
vulnerable | 2026-06-08 07:39:21.176423 |
WordPress Email Subscribers & Newsletters plugin <= 5.9.10 - PHP Object Injection vulnerability
HIGH (7.2)
Deserialization of Untrusted Data vulnerability in Icegram Email Subscribers & Newsletters email-subscribers allows Object Injection.This issue affects Email Subscribers & Newsletters: from n/a through <= 5.9.10.
Published: 2025-11-21T12:29:53.666Z
Updated: 2026-04-28T19:06:10.579Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-37252 |
vulnerable | 2026-06-08 06:39:46.966681 |
WordPress Email Subscribers by Icegram Express plugin <= 5.7.25 - SQL Injection vulnerability
CRITICAL (9.3)
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Icegram Email Subscribers & Newsletters allows SQL Injection.This issue affects Email Subscribers & Newsletters: from n/a through 5.7.25.
Published: 2024-06-26T10:13:48.219Z
Updated: 2026-04-28T16:09:57.583Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-22300 |
vulnerable | 2026-06-08 06:29:34.463752 |
WordPress Icegram Express plugin <= 5.7.11 - Reflected Cross Site Scripting (XSS) vulnerability
HIGH (7.1)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Icegram Email Subscribers & Newsletters allows Reflected XSS.This issue affects Email Subscribers & Newsletters: from n/a through 5.7.11.
Published: 2024-03-27T05:56:51.502Z
Updated: 2026-04-28T16:09:09.338Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-0602 |
vulnerable | 2026-06-08 05:10:24.210246 |
Details available
Cross-site scripting vulnerability in Email Subscribers & Newsletters versions prior to 3.5.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Published: 2018-06-26T14:00:00.000Z
Updated: 2024-08-05T03:28:11.435Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.