Cm Email Registration Blacklist And Whitelist

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:a:creativemindssolutions:cm_email_registration_blacklist_and_whitelist:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorCreativemindssolutions (f7222e7b-b519-5ad4-b066-3dcd3dd3d11b)
ProductCm Email Registration Blacklist And Whitelist (9c8fb1e4-59d8-59b9-9c18-98cc267a7072)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2025-24694 vulnerable 2026-06-03 14:59:56.665694 WordPress CM Pop-Up Banners plugin <= 1.7.6 - Reflected Cross Site Scripting (XSS) vulnerability
HIGH (7.1)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CreativeMindsSolutions CM Pop-Up banners cm-pop-up-banners allows Reflected XSS.This issue affects CM Pop-Up banners: from n/a through <= 1.7.6.
Published: 2025-03-03T13:30:21.298Z
Updated: 2026-04-28T16:11:31.979Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-5167 vulnerable 2026-06-03 14:57:51.938543 CM Email Registration Blacklist and Whitelist < 1.4.9 - Add/Delete Emails via CSRF Add and delete any item from blacklist/whitelist
The CM Email Registration Blacklist and Whitelist WordPress plugin before 1.4.9 does not have CSRF check when adding or deleting an item from the blacklist or whitelist, which could allow attackers to make a logged in admin add or delete settings from the blacklist or whitelist menu via a CSRF attack
Published: 2024-07-13T06:00:09.955Z
Updated: 2024-08-01T21:03:11.042Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.