Vulnerabilities (CVE)

Filtered by vendor Speakout\! Email Petitions Project Subscribe
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-0846 1 Speakout\! Email Petitions Project 1 Speakout\! Email Petitions 2024-02-28 7.5 HIGH 9.8 CRITICAL
The SpeakOut! Email Petitions WordPress plugin before 2.14.15.1 does not sanitise and escape the id parameter before using it in a SQL statement via the dk_speakout_sendmail AJAX action, leading to an SQL Injection exploitable by unauthenticated users