Vulnerabilities > Mailmunch > Mailmunch > 1.3.3
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-22 | CVE-2024-8735 | Cross-site Scripting vulnerability in Mailmunch The MailMunch – Grow your Email List plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 3.1.8. | 6.1 |
| 2024-04-07 | CVE-2024-31349 | Unspecified vulnerability in Mailmunch Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in MailMunch MailMunch – Grow your Email List allows Stored XSS.This issue affects MailMunch – Grow your Email List: from n/a through 3.1.6. | 5.4 |
| 2023-10-10 | CVE-2023-41852 | Cross-Site Request Forgery (CSRF) vulnerability in Mailmunch Cross-Site Request Forgery (CSRF) vulnerability in MailMunch MailMunch – Grow your Email List plugin <= 3.1.2 versions. | 8.8 |