Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Brevo Newsletter, SMTP, Email marketing and Subscribe forms by Sendinblue allows Reflected XSS.This issue affects Newsletter, SMTP, Email marketing and Subscribe forms by Sendinblue: from n/a through 3.1.77.
History

Wed, 16 Oct 2024 13:45:00 +0000

Type Values Removed Values Added
First Time appeared Brevo
Brevo newsletter\, Smtp\, Email Marketing And Subscribe
CPEs cpe:2.3:a:sendinblue:newsletter\,_smtp\,_email_marketing_and_subscribe:*:*:*:*:*:wordpress:*:* cpe:2.3:a:brevo:newsletter\,_smtp\,_email_marketing_and_subscribe:*:*:*:*:*:wordpress:*:*
Vendors & Products Sendinblue
Sendinblue newsletter\, Smtp\, Email Marketing And Subscribe
Brevo
Brevo newsletter\, Smtp\, Email Marketing And Subscribe

cve-icon MITRE

Status: PUBLISHED

Assigner: Patchstack

Published: 2024-06-04T13:48:46.211Z

Updated: 2024-08-02T03:14:53.885Z

Reserved: 2024-05-17T10:08:34.666Z

Link: CVE-2024-35668

cve-icon Vulnrichment

Updated: 2024-06-04T14:40:53.309Z

cve-icon NVD

Status : Modified

Published: 2024-06-04T14:15:13.783

Modified: 2024-11-21T09:20:37.160

Link: CVE-2024-35668

cve-icon Redhat

No data.