I13websolution Email_subscription_popup

5 CVEs affecting I13websolution Email_subscription_popup. Latest disclosed: 2024-11-19. Critical: 0, High: 2.

Top CVEs affecting I13websolution Email_subscription_popup
CVESeverityScorePublishedSummary
CVE-2024-27960High7.12024-03-17Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in I Thirteen Web Solution Email Subscription Popup allows S…
CVE-2023-30489High7.12023-08-14Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in I Thirteen Web Solution Email Subscription Popup plugin <= 1.2.16 versions.
CVE-2024-11195Medium6.42024-11-19The Email Subscription Popup plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's print_email_subscribe_form shortcode in all ver…
CVE-2023-6555Medium6.12024-01-08The Email Subscription Popup WordPress plugin before 1.2.20 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflec…
CVE-2023-6527Medium6.12023-12-06The Email Subscription Popup plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the HTTP_REFERER header in all versions up to, and includ…