Vulnerabilities > Ibericode > Mailchimp > 4.1.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-21 | CVE-2024-8680 | Cross-site Scripting vulnerability in Ibericode Mailchimp The MC4WP: Mailchimp for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 4.9.16 due to insufficient input sanitization and output escaping. | 5.5 |
| 2024-06-11 | CVE-2023-51682 | Unspecified vulnerability in Ibericode Mailchimp Missing Authorization vulnerability in ibericode MC4WP.This issue affects MC4WP: from n/a through 4.9.9. | 5.3 |
| 2019-08-22 | CVE-2017-18577 | Cross-site Scripting vulnerability in Ibericode Mailchimp The mailchimp-for-wp plugin before 4.1.8 for WordPress has XSS via the return value of add_query_arg. | 6.1 |