Approved changes feed: RSS · Atom

cpe:2.3:a:shawfactor:lh_email:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorShawfactor (f934b39a-d493-5383-bc49-44fdae0a8108)
ProductLh Email (9f6fa496-d52d-5b41-be05-c84fc974ae7d)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2025-23676 vulnerable 2026-06-08 07:10:56.157349 WordPress LH Email plugin <= 1.12 - Reflected Cross Site Scripting (XSS) vulnerability
HIGH (7.1)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in shawfactor LH Email lh-email allows Reflected XSS.This issue affects LH Email: from n/a through <= 1.12.
Published: 2025-01-22T14:29:17.985Z
Updated: 2026-04-28T16:11:16.707Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.