Mailerlite Signup Forms

mailerlite_signup_forms

Vendor: Mailerlite • 2 CVEs

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-33201 1Mailerlite 1Mailerlite Signup Forms Jun 17, 2026 Aug 5, 2022 N/A· v4 8.8 HIGH· v3 N/A· v2 Cross-Site Request Forgery (CSRF) vulnerability in MailerLite – Signup forms (official) plugin <= 1.5.7 at WordPress allows an attacker to change the API key.
CVE-2022-1604 1Mailerlite 1Mailerlite Signup Forms Jun 17, 2026 Jun 13, 2022 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 The MailerLite WordPress plugin before 1.5.4 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting