Vulnerabilities and Security Researches

Vulnerabilities and security researches fornewspack-newsletters newspack-newsletters

Direction: ascending

Jun 24, 2024

Newspack Newsletters # CVE-2024-37242

CVE, Research URL: CVE-2024-37242
Home page URL: Security reports for Newspack Newsletters
Application: Newspack Newsletters
Date: Jan 02, 2025
Research Description: Cross-Site Request Forgery (CSRF) vulnerability in Automattic Newspack Newsletters allows Cross Site Request Forgery.This issue affects Newspack Newsletters: from n/a through 2.13.2.
Affected versions: Min -, max -.
Status: vulnerable

Jul 04, 2024

Newspack Newsletters # CVE-2024-37475

CVE, Research URL: CVE-2024-37475
Home page URL: Security reports for Newspack Newsletters
Application: Newspack Newsletters
Date: Nov 01, 2024
Research Description: Missing Authorization vulnerability in Automattic Newspack Newsletters allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Newspack Newsletters: from n/a through 2.13.2.
Affected versions: Min -, max -.
Status: vulnerable

Jun 15, 2025

Newspack Newsletters # CVE-2025-49325

CVE, Research URL: CVE-2025-49325
Home page URL: Security reports for Newspack Newsletters
Application: Newspack Newsletters
Date: Jun 06, 2025
Research Description: URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Automattic Newspack Newsletters allows Phishing. This issue affects Newspack Newsletters: from n/a through 3.13.0.
Affected versions: Min -, max -.
Status: vulnerable