cleantalk
Vulnerabilities and Security Researches

WP Newsletter Subscription, CVE-2024-44012

CVE, Research URL

CVE-2024-44012

Home page URL

Security reports for WP Newsletter Subscription

Application

WP Newsletter Subscription

Published on
Oct 05, 2024
Research Description
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in wpdev33 WP Newsletter Subscription allows PHP Local File Inclusion.This issue affects WP Newsletter Subscription: from n/a through 1.1.
Affected versions
Min -, max 1.1.
Status
vulnerable
Previous vulnerability researches
ENL Newsletter (CVE-2014-4939) , Jun 10, 2024
ENL Newsletter (CVE-2024-3060) , Jun 10, 2024
ENL Newsletter (CVE-2024-3058) , Jun 10, 2024
ENL Newsletter (CVE-2024-3059) , Jun 10, 2024
WP Newsletter Subscription (CVE-2024-44012) , Sep 28, 2024
New vulnerability
Xavin's List Subpages (CVE-2025-4220) , May 08, 2025
CarDealerPress (CVE-2025-3860) , May 08, 2025
Crossword Compiler Puzzles (CVE-2025-46493) , May 08, 2025
Frontend Dashboard (CVE-2025-4104) , May 08, 2025
Icegram Express – Email Marketing, Newsletters and Automation for WordPress & WooCommerce (CVE-2025-0671) , May 08, 2025