Really Simple Security logo

Log out
Get PRO

Latest

Access violation vulnerability in Email Subscribers by Icegram Express – Email Marketing, Newsletters, Automation for WordPress & WooCommerce 5.7.17

  • Severity: medium-risk
  • Status: Fixed
  • Publication: May 22, 2024

The Email Subscribers plugin for WordPress, called Icegram Express, has a security vulnerability. This means that people who are not authorized can access private information without permission. This vulnerability affects all versions of the plugin up to 5.7.17. This means that attackers who are logged in with subscriber access or higher can see private and password-protected posts.

Detected in:

Email Subscribers & Newsletters – Powerful Email Marketing, Post Notification & Newsletter Plugin for WordPress & WooCommerce fixed vulnerable versions:
Email Subscribers by Icegram Express – Affordable, Powerful Email Marketing for WordPress & WooCommerce fixed vulnerable versions:
Email Subscribers by Icegram Express – Email Marketing, Newsletters, Automation for WordPress & WooCommerce fixed vulnerable versions:
Icegram Express – email subscribers, optin forms, newsletters and marketing automation for WordPress & WooCommerce fixed vulnerable versions:
Icegram Express formerly known as Email Subscribers – The Ultimate Email Marketing & Automation Plugin for WordPress fixed vulnerable versions:

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.