Icegram Express – Email Marketing, Newsletters and Automation for WordPress & WooCommerce, CVE-2019-19981
- CVE, Research URL
- Home page URL
- Application
-
Icegram Express – Email Marketing, Newsletters and Automation for WordPress & WooCommerce
- Published on
- Dec 26, 2019
- Research Description
- The WordPress plugin, Email Subscribers & Newsletters, before 4.2.3 had a flaw that allowed for CSRF to be exploited on all plugin settings.
- Affected versions
-
Min -, max 4.2.3.
- Status
-
vulnerable