CVE-2018-1002008

Summary

There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit. There is an XSS vulnerability in list-user.html.php:4: via GET request offset variable.

Affected Software

VendorProductVersion RangeStatus
Kiboko Labs https://calendarscripts.info/Arigato Autoresponder and Newsletterunspecified <= 2.5.1.8affected

Weaknesses

  • reflected XSS vulnerability in Wordpress Plugin Arigato Autoresponder and Newsletter v2.5.1.8

ADP Enrichment

CVE Program Container

Additional References

References