The Newsletters plugin used for WordPress is not secure and can be hacked by anyone, even without an account. This is because it does not properly filter or protect against harmful scripts that can be inserted into website pages. Attackers can take advantage of this vulnerability by tricking users into clicking on links that will execute the harmful code.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
