Vulnerabilities > Codemiq > WP Html Mail

DATE CVE VULNERABILITY TITLE RISK
2023-10-03 CVE-2023-40202 Cross-Site Request Forgery (CSRF) vulnerability in Codemiq WP Html Mail
Cross-Site Request Forgery (CSRF) vulnerability in Hannes Etzelstorfer // codemiq WP HTML Mail plugin <= 3.4.1 versions.
network
low complexity
codemiq CWE-352
8.8
8.8
2023-06-07 CVE-2019-25144 Cross-site Scripting vulnerability in Codemiq WP Html Mail
The WP HTML Mail plugin for WordPress is vulnerable to HTML injection in versions up to, and including, 2.2.10 due to insufficient input sanitization.
network
low complexity
codemiq CWE-79
6.1
6.1
2023-06-07 CVE-2019-25148 Cross-site Scripting vulnerability in Codemiq WP Html Mail
The WP HTML Mail plugin for WordPress is vulnerable to HTML injection in versions up to, and including, 2.9.0.3 due to insufficient input sanitization.
network
low complexity
codemiq CWE-79
6.1
6.1