Smackcoders WP Ultimate Email Marketer plugin 1.0.2 for WordPress
Approved changes feed: RSS · Atom
cpe:2.3:a:smackcoders:wp_ultimate_email_marketer_plugin:1.0.2:-:*:*:*:wordpress:*:*
part: a version: 1.0.2 update: -
| Vendor | Smackcoders (e878c6d9-526e-5971-b31d-cb731330415c) |
|---|---|
| Product | Wp Ultimate Email Marketer Plugin (f57d303b-b423-5e80-aa7f-53e0d653af61) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | wordpress |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2013-3264 |
vulnerable | 2026-06-03 14:33:06.447368 |
Details available
The WP Ultimate Email Marketer plugin 1.1.0 and possibly earlier for Wordpress does not properly restrict access to (1) list/edit.php and (2) campaign/editCampaign.php, which allows remote attackers to modify list or campaign data.
Published: 2013-11-05T20:00:00.000Z
Updated: 2024-09-17T00:01:44.550Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2013-3263 |
vulnerable | 2026-06-03 14:33:06.446401 |
Details available
Multiple cross-site scripting (XSS) vulnerabilities in the WP Ultimate Email Marketer plugin 1.1.0 and possibly earlier for Wordpress allow remote attackers to inject arbitrary web script or HTML via the (1) siteurl parameter to campaign/campaignone.php; the (2) action, (3) campaignname, (4) campaignformat, or (5) emailtemplate parameter to campaign/campaigntwo.php; the (6) listid parameter to list/edit.php; the (7) campaignid or (8) siteurl parameter to campaign/editcampaign.php; the (9) campaignid parameter to campaign/selectlistb4send.php; the (10) campaignid, (11) campaignname, (12) campaignsubject, or (13) selectedcampaigns parameter to campaign/sendCampaign.php; or the (14) campaignid, (15) campaignname, (16) campaignformat, or (17) action parameter to campaign/updatecampaign.php.
Published: 2013-11-05T20:00:00.000Z
Updated: 2024-09-16T20:06:45.705Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.