WPScan
How it worksPricing
Vulnerabilities
WordPressPluginsThemesStatsSubmit vulnerabilities
For developers
StatusAPI detailsCLI scanner
Contact

WordPress Plugin Vulnerabilities

Newsletter Manager < 1.0.2 - Authenticated Reflected Cross Site Scripting

Description

The Newsletter Manager WordPress plugin was affected by a Cross Site Scripting security vulnerability.

Affects Plugins

newsletter-manager
Fixed in version 1.0.2 - plugin closed

References

CVE
CVE-2012-6628
CVE
CVE-2012-6627
URL
https://packetstormsecurity.com/files/112694/

Classification

Type

XSS

OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79

Miscellaneous

Verified

No

WPVDB ID
273570a5-21cb-4338-b6f3-faf03ffef813

Timeline

Publicly Published

2014-08-01 (about 8 years ago)

Added

2014-08-01 (about 8 years ago)

Last Updated

2020-12-30 (about 2 years ago)

Our Other Services

WPScan WordPress Security Plugin