Vulnerabilities > Subscribe2 Project > Subscribe2 > 10.40
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-28 | CVE-2023-1844 | Unspecified vulnerability in Subscribe2 Project Subscribe2 The Subscribe2 plugin for WordPress is vulnerable to unauthorized access to email functionality due to a missing capability check when sending test emails in versions up to, and including, 10.40. | 4.3 |
| 2023-06-28 | CVE-2023-3407 | Unspecified vulnerability in Subscribe2 Project Subscribe2 The Subscribe2 plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 10.40. | 4.3 |