cleantalk
Vulnerabilities and Security Researches

Vulnerabilities and security researches forcontact-forms-anti-spam contact-forms-anti-spam

Direction: ascending
Jun 07, 2024

Maspik – Spam Blacklist # CVE-2024-25101

CVE, Research URL

CVE-2024-25101

Home page URL

Security reports for Maspik – Spam Blacklist

Application

Maspik – Spam Blacklist

Date
Mar 13, 2024
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in yonifre Maspik – Spam Blacklist allows Stored XSS.This issue affects Maspik – Spam Blacklist: from n/a through 0.10.6.
Affected versions
Min -, max -.
Status
vulnerable

Maspik – Spam Blacklist # CVE-2023-24008

CVE, Research URL

CVE-2023-24008

Home page URL

Security reports for Maspik – Spam Blacklist

Application

Maspik – Spam Blacklist

Date
May 26, 2023
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in yonifre Maspik – Spam Blacklist plugin <= 0.7.8 versions.
Affected versions
Min -, max -.
Status
vulnerable

Maspik &#8211; Spam Blacklist # CVE-2023-48272

CVE, Research URL

CVE-2023-48272

Home page URL

Security reports for Maspik &#8211; Spam Blacklist

Application

Maspik &#8211; Spam Blacklist

Date
Nov 30, 2023
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in yonifre Maspik – Spam Blacklist allows Stored XSS.This issue affects Maspik – Spam Blacklist: from n/a through 0.9.2.
Affected versions
Min -, max -.
Status
vulnerable

Maspik &#8211; Spam Blacklist # CVE-2023-48271

CVE, Research URL

CVE-2023-48271

Home page URL

Security reports for Maspik &#8211; Spam Blacklist

Application

Maspik &#8211; Spam Blacklist

Date
Jun 04, 2024
Research Description
Authentication Bypass by Spoofing vulnerability in yonifre Maspik – Spam blacklist allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Maspik – Spam blacklist: from n/a through 0.10.3.
Affected versions
Min -, max -.
Status
vulnerable
Dec 08, 2024

Maspik &#8211; Spam Blacklist # CVE-2024-53806

CVE, Research URL

CVE-2024-53806

Home page URL

Security reports for Maspik &#8211; Spam Blacklist

Application

Maspik &#8211; Spam Blacklist

Date
Dec 06, 2024
Research Description
Missing Authorization vulnerability in WpMaspik Maspik – Spam blacklist allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Maspik – Spam blacklist: from n/a through 2.2.7.
Affected versions
Min -, max -.
Status
vulnerable
May 19, 2025

Maspik &#8211; Spam Blacklist # CVE-2024-9182

CVE, Research URL

CVE-2024-9182

Home page URL

Security reports for Maspik &#8211; Spam Blacklist

Application

Maspik &#8211; Spam Blacklist

Date
May 16, 2025
Research Description
The Maspik WordPress plugin before 2.1.3 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when unfiltered_html is disallowed.
Affected versions
Min -, max -.
Status
vulnerable