Vulnerabilities > CVE-2019-19984 - Incorrect Authorization vulnerability in Icegram Email Subscribers & Newsletters

CVSS 6.5 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

SINGLE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

icegram

CWE-863

NVD

Published: 2019-12-26

Updated: 2020-08-24

Summary

The WordPress plugin, Email Subscribers & Newsletters, before 4.2.3 had a flaw that allowed users with edit_post capabilities to manage plugin settings and email campaigns.

Vulnerable Configurations

Part	Description	Count
Application	Icegram Icegram Email Subscribers & Newsletters 1.0 Icegram Email Subscribers & Newsletters 1.1 Icegram Email Subscribers & Newsletters 1.2 Icegram Email Subscribers & Newsletters 1.3 Icegram Email Subscribers & Newsletters 1.4 Icegram Email Subscribers & Newsletters 1.5 Icegram Email Subscribers & Newsletters 1.6 Icegram Email Subscribers & Newsletters 1.7 Icegram Email Subscribers & Newsletters 1.8 Icegram Email Subscribers & Newsletters 1.9 Icegram Email Subscribers & Newsletters 2.0 Icegram Email Subscribers & Newsletters 2.1 Icegram Email Subscribers & Newsletters 2.2 Icegram Email Subscribers & Newsletters 2.3 Icegram Email Subscribers & Newsletters 2.4 Icegram Email Subscribers & Newsletters 2.5 Icegram Email Subscribers & Newsletters 2.6 Icegram Email Subscribers & Newsletters 2.7 Icegram Email Subscribers & Newsletters 2.8 Icegram Email Subscribers & Newsletters 2.9 Icegram Email Subscribers & Newsletters 2.9.1 Icegram Email Subscribers & Newsletters 2.9.2 Icegram Email Subscribers & Newsletters 3.0 Icegram Email Subscribers & Newsletters 3.0.1 Icegram Email Subscribers & Newsletters 3.1 Icegram Email Subscribers & Newsletters 3.1.1 Icegram Email Subscribers & Newsletters 3.1.2 Icegram Email Subscribers & Newsletters 3.1.3 Icegram Email Subscribers & Newsletters 3.1.4 Icegram Email Subscribers & Newsletters 3.1.5 Icegram Email Subscribers & Newsletters 3.2 Icegram Email Subscribers & Newsletters 3.2.1 Icegram Email Subscribers & Newsletters 3.2.2 Icegram Email Subscribers & Newsletters 3.2.3 Icegram Email Subscribers & Newsletters 3.2.4 Icegram Email Subscribers & Newsletters 3.2.5 Icegram Email Subscribers & Newsletters 3.2.6 Icegram Email Subscribers & Newsletters 3.2.7 Icegram Email Subscribers & Newsletters 3.2.8 Icegram Email Subscribers & Newsletters 3.2.9 Icegram Email Subscribers & Newsletters 3.2.10 Icegram Email Subscribers & Newsletters 3.2.11 Icegram Email Subscribers & Newsletters 3.3 Icegram Email Subscribers & Newsletters 3.3.1 Icegram Email Subscribers & Newsletters 3.3.2 Icegram Email Subscribers & Newsletters 3.3.3 Icegram Email Subscribers & Newsletters 3.3.4 Icegram Email Subscribers & Newsletters 3.3.5 Icegram Email Subscribers & Newsletters 3.3.6 Icegram Email Subscribers & Newsletters 3.3.7 Icegram Email Subscribers & Newsletters 3.4.0 Icegram Email Subscribers & Newsletters 3.4.1 Icegram Email Subscribers & Newsletters 3.4.2 Icegram Email Subscribers & Newsletters 3.4.3 Icegram Email Subscribers & Newsletters 3.4.4 Icegram Email Subscribers & Newsletters 3.4.5 Icegram Email Subscribers & Newsletters 3.4.6 Icegram Email Subscribers & Newsletters 3.4.7 Icegram Email Subscribers & Newsletters 3.4.8 Icegram Email Subscribers & Newsletters 3.4.9 Icegram Email Subscribers & Newsletters 3.4.10 Icegram Email Subscribers & Newsletters 3.4.11 Icegram Email Subscribers & Newsletters 3.4.12 Icegram Email Subscribers & Newsletters 3.5.0 Icegram Email Subscribers & Newsletters 3.5.1 Icegram Email Subscribers & Newsletters 3.5.2 Icegram Email Subscribers & Newsletters 3.5.3 Icegram Email Subscribers & Newsletters 3.5.4 Icegram Email Subscribers & Newsletters 3.5.5 Icegram Email Subscribers & Newsletters 3.5.6 Icegram Email Subscribers & Newsletters 3.5.7 Icegram Email Subscribers & Newsletters 3.5.8 Icegram Email Subscribers & Newsletters 3.5.9 Icegram Email Subscribers & Newsletters 3.5.10 Icegram Email Subscribers & Newsletters 3.5.11 Icegram Email Subscribers & Newsletters 3.5.12 Icegram Email Subscribers & Newsletters 3.5.13 Icegram Email Subscribers & Newsletters 3.5.14 Icegram Email Subscribers & Newsletters 3.5.15 Icegram Email Subscribers & Newsletters 3.5.16 Icegram Email Subscribers & Newsletters 3.5.17 Icegram Email Subscribers & Newsletters 3.5.18 Icegram Email Subscribers & Newsletters 4.0 Icegram Email Subscribers & Newsletters 4.0.1 Icegram Email Subscribers & Newsletters 4.0.2 Icegram Email Subscribers & Newsletters 4.0.3 Icegram Email Subscribers & Newsletters 4.0.4 Icegram Email Subscribers & Newsletters 4.0.5 Icegram Email Subscribers & Newsletters 4.0.6 Icegram Email Subscribers & Newsletters 4.0.7 Icegram Email Subscribers & Newsletters 4.0.8 Icegram Email Subscribers & Newsletters 4.0.9 Icegram Email Subscribers & Newsletters 4.0.10 Icegram Email Subscribers & Newsletters 4.0.11 Icegram Email Subscribers & Newsletters 4.0.12 Icegram Email Subscribers & Newsletters 4.0.13 Icegram Email Subscribers & Newsletters 4.0.14 Icegram Email Subscribers & Newsletters 4.0.14.1 Icegram Email Subscribers & Newsletters 4.0.15 Icegram Email Subscribers & Newsletters 4.0.16 Icegram Email Subscribers & Newsletters 4.0.17 Icegram Email Subscribers & Newsletters 4.0.18 Icegram Email Subscribers & Newsletters 4.1 Icegram Email Subscribers & Newsletters 4.1.1 Icegram Email Subscribers & Newsletters 4.1.2 Icegram Email Subscribers & Newsletters 4.1.2.1 Icegram Email Subscribers & Newsletters 4.1.2.2 Icegram Email Subscribers & Newsletters 4.1.3 Icegram Email Subscribers & Newsletters 4.1.4 Icegram Email Subscribers & Newsletters 4.1.5 Icegram Email Subscribers & Newsletters 4.1.6 Icegram Email Subscribers & Newsletters 4.1.7 Icegram Email Subscribers & Newsletters 4.1.8 Icegram Email Subscribers & Newsletters 4.1.9 Icegram Email Subscribers & Newsletters 4.1.10 Icegram Email Subscribers & Newsletters 4.1.11 Icegram Email Subscribers & Newsletters 4.1.12 Icegram Email Subscribers & Newsletters 4.1.13 Icegram Email Subscribers & Newsletters 4.1.14 Icegram Email Subscribers & Newsletters 4.1.15 Icegram Email Subscribers & Newsletters 4.2.0 Icegram Email Subscribers & Newsletters 4.2.1 Icegram Email Subscribers & Newsletters 4.2.2	123

Common Weakness Enumeration (CWE)

CWE-863 - Incorrect Authorization

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References