Calgary, Alberta, Canada
sales@hackhalt.com
Free Download Free Download Free Download
Explore Pricing Explore Pricing Explore Pricing

Blog

"Prevention is cheaper than a breach"

Live Vulnerability Intelligence

Threat Database

Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.

Total3
Critical0
High1
Medium2
Reset
Showing 1-3 of 3 records
Threat Entry Updated 2024-10-22

CVE-2024-9364 - Sendgrid Plugin

The SendGrid for WordPress plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'wp_mailplus_clear_logs' function in all versions up to, and including, 1.4. This makes it possible for authenticated attackers, with Subscriber-level access and above, to delete the plugin's log files.

PLUGIN Sendgrid

CVE-2024-9364

MEDIUM CVSS 4.3 2024-10-18
Open Full Technical Breakdown
Threat Entry Updated 2024-09-04

CVE-2024-43965 - Sendgrid Plugin

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Smackcoders SendGrid for WordPress allows SQL Injection.This issue affects SendGrid for WordPress: from n/a through 1.4.

PLUGIN Sendgrid

CVE-2024-43965

HIGH CVSS 8.2 2024-08-29
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2021-34629 - Sendgrid Plugin

The SendGrid WordPress plugin is vulnerable to authorization bypass via the get_ajax_statistics function found in the ~/lib/class-sendgrid-statistics.php file which allows authenticated users to export statistic for a WordPress multi-site main site, in versions up to and including 1.11.8.

PLUGIN Sendgrid

CVE-2021-34629

MEDIUM CVSS 4.3 2021-07-30
Open Full Technical Breakdown
Scroll to top