Mailchimp Mailchimp For Woocommerce — known CVE vulnerabilities
Every CVE whose affected-product data names Mailchimp Mailchimp For Woocommerce, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2022-2267 — CVSS 4.3 (medium): The Mailchimp for WooCommerce WordPress plugin before 2.7.1 has an AJAX action that allows any logged in users (such as subscriber) to…
CVE-2022-2556 — CVSS 2.7 (low): The Mailchimp for WooCommerce WordPress plugin before 2.7.2 has an AJAX action that allows high privilege users to perform a POST request…