Webfwd Mail Subscribe List — known CVE vulnerabilities
Every CVE whose affected-product data names Webfwd Mail Subscribe List, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2023-23657 — CVSS 6.5 (medium): Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Richard Leishman t/a Webforward Mail Subscribe List plugin <= 2.1.9…
CVE-2022-1603 — CVSS 4.3 (medium): The Mail Subscribe List WordPress plugin before 2.1.4 does not have CSRF check in place when deleting subscribed users, which could allow…
CVE-2013-10026 — CVSS 3.5 (low): A vulnerability, which was classified as problematic, has been found in Mail Subscribe List Plugin up to 2.0.10 on WordPress. This issue…