CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-52223 – WordPress MailerLite – WooCommerce integration Plugin <= 2.0.8 is vulnerable to Cross Site Request Forgery (CSRF)
https://notcve.org/view.php?id=CVE-2023-52223
08 Jan 2024 — Cross-Site Request Forgery (CSRF) vulnerability in MailerLite MailerLite – WooCommerce integration.This issue affects MailerLite – WooCommerce integration: from n/a through 2.0.8. Vulnerabilidad de Cross-Site Request Forgery (CSRF) en MailerLite MailerLite – WooCommerce integration. Este problema afecta a MailerLite – integración de WooCommerce: desde n/a hasta 2.0.8. The MailerLite – WooCommerce integration plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2... • https://patchstack.com/database/vulnerability/woo-mailerlite/wordpress-mailerlite-woocommerce-integration-plugin-2-0-7-cross-site-request-forgery-csrf-vulnerability?_s_id=cve • CWE-352: Cross-Site Request Forgery (CSRF) •
CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 0CVE-2023-52227 – WordPress MailerLite – WooCommerce integration plugin <= 2.0.8 - Broken Access Control vulnerability
https://notcve.org/view.php?id=CVE-2023-52227
08 Jan 2024 — Missing Authorization vulnerability in MailerLite MailerLite – WooCommerce integration.This issue affects MailerLite – WooCommerce integration: from n/a through 2.0.8. Vulnerabilidad de autorización faltante en MailerLite MailerLite – WooCommerce integration. Este problema afecta a MailerLite – WooCommerce integration: desde n/a hasta 2.0.8. The MailerLite – WooCommerce integration plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on multiple functions... • https://patchstack.com/database/vulnerability/woo-mailerlite/wordpress-mailerlite-woocommerce-integration-plugin-2-0-7-broken-access-control-vulnerability?_s_id=cve • CWE-862: Missing Authorization •