Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Brevo Newsletter, SMTP, Email marketing and Subscribe forms by Sendinblue allows Reflected XSS.This issue affects Newsletter, SMTP, Email marketing and Subscribe forms by Sendinblue: from n/a through 3.1.77.
Metrics
Affected Vendors & Products
References
History
Wed, 16 Oct 2024 13:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Brevo
Brevo newsletter\, Smtp\, Email Marketing And Subscribe |
|
CPEs | cpe:2.3:a:brevo:newsletter\,_smtp\,_email_marketing_and_subscribe:*:*:*:*:*:wordpress:*:* | |
Vendors & Products |
Sendinblue
Sendinblue newsletter\, Smtp\, Email Marketing And Subscribe |
Brevo
Brevo newsletter\, Smtp\, Email Marketing And Subscribe |
MITRE
Status: PUBLISHED
Assigner: Patchstack
Published: 2024-06-04T13:48:46.211Z
Updated: 2024-08-02T03:14:53.885Z
Reserved: 2024-05-17T10:08:34.666Z
Link: CVE-2024-35668
Vulnrichment
Updated: 2024-06-04T14:40:53.309Z
NVD
Status : Modified
Published: 2024-06-04T14:15:13.783
Modified: 2024-11-21T09:20:37.160
Link: CVE-2024-35668
Redhat
No data.