Yikesinc - Easy Forms For Mailchimp CVE

Filtered by vendor Yikesinc Subscribe

Filtered by product Easy Forms For Mailchimp

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2023-23900	1 Yikesinc	1 Easy Forms For Mailchimp	2023-08-15	N/A	6.1 MEDIUM
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in YIKES, Inc. Easy Forms for Mailchimp plugin <= 6.8.8 versions.
CVE-2021-24985	1 Yikesinc	1 Easy Forms For Mailchimp	2022-01-27	4.3 MEDIUM	6.1 MEDIUM
The Easy Forms for Mailchimp WordPress plugin before 6.8.6 does not sanitise and escape the field_name and field_type parameters before outputting them back in attributes, leading to Reflected Cross-Site Scripting issues

Vulnerabilities (CVE)