Vulnerabilities and security researches forwp-mailing-group wp-mailing-group

Jan 11, 2025

CVE, Research URL: CVE-2025-22595
Home page URL: Security reports for Mailing Group Listserv
Application: Mailing Group Listserv
Date: Jan 09, 2025
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Yamna Khawaja Mailing Group Listserv allows Reflected XSS.This issue affects Mailing Group Listserv: from n/a through 2.0.9.
Affected versions: Min -, max -.
Status: vulnerable

CVE, Research URL: CVE-2025-22527
Home page URL: Security reports for Mailing Group Listserv
Application: Mailing Group Listserv
Date: Jan 09, 2025
Research Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Yamna Khawaja Mailing Group Listserv allows SQL Injection.This issue affects Mailing Group Listserv: from n/a through 2.0.9.
Affected versions: Min -, max -.
Status: vulnerable

May 05, 2025

CVE, Research URL: CVE-2025-46463
Home page URL: Security reports for Mailing Group Listserv
Application: Mailing Group Listserv
Date: May 23, 2025
Research Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Yamna Khawaja Mailing Group Listserv allows SQL Injection. This issue affects Mailing Group Listserv: from n/a through 3.0.4.
Affected versions: Min -, max -.
Status: vulnerable

Jun 23, 2025

CVE, Research URL: CVE-2025-50036
Home page URL: Security reports for Mailing Group Listserv
Application: Mailing Group Listserv
Date: Jun 20, 2025
Research Description: Cross-Site Request Forgery (CSRF) vulnerability in Yamna Khawaja Mailing Group Listserv allows Cross Site Request Forgery. This issue affects Mailing Group Listserv: from n/a through 3.0.5.
Affected versions: Min -, max -.
Status: vulnerable