Vulnerabilities > Ibericode > Mailchimp > 4.1.12

DATE CVE VULNERABILITY TITLE RISK
2024-09-21 CVE-2024-8680 Cross-site Scripting vulnerability in Ibericode Mailchimp
The MC4WP: Mailchimp for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 4.9.16 due to insufficient input sanitization and output escaping.
network
low complexity
ibericode CWE-79
5.5
5.5
2024-06-11 CVE-2023-51682 Unspecified vulnerability in Ibericode Mailchimp
Missing Authorization vulnerability in ibericode MC4WP.This issue affects MC4WP: from n/a through 4.9.9.
network
low complexity
ibericode
5.3
5.3