← Back

Mailerlite

mailerlite

3 CVEs • 2 products

Products (2)

Click to collapse
Toggle
Mailerlite Signup Forms
mailerlite_signup_forms
2 CVEs
Mailerlite
mailerlite
1 CVE

CVEs (3)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2023-52223
1Mailerlite
1Mailerlite
Jun 17, 2026
Feb 28, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
Cross-Site Request Forgery (CSRF) vulnerability in MailerLite MailerLite – WooCommerce integration.This issue affects MailerLite – WooCommerce integration: from n/a through 2.0.8.
CVE-2022-33201
1Mailerlite
1Mailerlite Signup Forms
Jun 17, 2026
Aug 5, 2022
N/A· v4
8.8 HIGH· v3
N/A· v2
Cross-Site Request Forgery (CSRF) vulnerability in MailerLite – Signup forms (official) plugin <= 1.5.7 at WordPress allows an attacker to change the API key.
CVE-2022-1604
1Mailerlite
1Mailerlite Signup Forms
Jun 17, 2026
Jun 13, 2022
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
The MailerLite WordPress plugin before 1.5.4 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting