Activecampaign - Activecampaign CVE

Filtered by vendor Activecampaign Subscribe

Filtered by product Activecampaign

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2021-24133	1 Activecampaign	1 Activecampaign	2021-03-25	4.3 MEDIUM	4.3 MEDIUM
Lack of CSRF checks in the ActiveCampaign WordPress plugin, versions before 8.0.2, on its Settings form, which could allow attacker to make a logged-in administrator change API Credentials to attacker's account.

Vulnerabilities (CVE)