CVE-2018-1002008
N/A
N/A
Summary
There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit. There is an XSS vulnerability in list-user.html.php:4: via GET request offset variable.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Kiboko Labs https://calendarscripts.info/ | Arigato Autoresponder and Newsletter | unspecified <= 2.5.1.8 | affected |
Weaknesses
- reflected XSS vulnerability in Wordpress Plugin Arigato Autoresponder and Newsletter v2.5.1.8
ADP Enrichment
CVE Program Container
Additional References
- https://www.exploit-db.com/exploits/45434/
- https://wordpress.org/plugins/bft-autoresponder/
- http://www.vapidlabs.com/advisory.php?v=203
References
- https://www.exploit-db.com/exploits/45434/
- https://wordpress.org/plugins/bft-autoresponder/
- http://www.vapidlabs.com/advisory.php?v=203
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.