CVE-2018-1002006

Summary

These vulnerabilities require administrative privileges to exploit. There is an XSS vulnerability in integration-contact-form.html.php:14: via POST request variable classes

Affected Software

VendorProductVersion RangeStatus
Kiboko Labs https://calendarscripts.info/Arigato Autoresponder and Newsletterunspecified <= 2.5.1.8affected

Weaknesses

  • Blind SQL injection and multiple reflected XSS vulnerabilities in Wordpress Plugin Arigato Autoresponder and Newsletter v2.5.1.8

ADP Enrichment

CVE Program Container

Additional References

References