CVE-2018-1002005

Summary

These vulnerabilities require administrative privileges to exploit. There is an XSS vulnerability in bft_list.html.php:43: via the filter_signup_date parameter.

Affected Software

VendorProductVersion RangeStatus
Kiboko Labs https://calendarscripts.info/Arigato Autoresponder and Newsletterunspecified <= 2.5.1.8affected

Weaknesses

  • Blind SQL injection and multiple reflected XSS vulnerabilities in Wordpress Plugin Arigato Autoresponder and Newsletter v2.5.1.8

ADP Enrichment

CVE Program Container

Additional References

References