πŸ” CVE Alert

CVE-2024-35742

MEDIUM 5.3

WordPress Easy Forms for Mailchimp plugin <= 6.9.0 - Broken Access Control vulnerability

CVSS Score
5.3
EPSS Score
0.0%
EPSS Percentile
0th

Missing Authorization vulnerability in Code Parrots Easy Forms for Mailchimp.This issue affects Easy Forms for Mailchimp: from n/a through 6.9.0.

CWE CWE-862
Vendor code parrots
Product easy forms for mailchimp
Published Jun 10, 2024
Last Updated Apr 28, 2026
Stay Ahead of the Next One

Get instant alerts for code parrots easy forms for mailchimp

Be the first to know when new medium vulnerabilities affecting code parrots easy forms for mailchimp are published β€” delivered to Slack, Telegram or Discord.

Get Free Alerts β†’ Free Β· No credit card Β· 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
Low

Affected Versions

Code Parrots / Easy Forms for Mailchimp
n/a ≀ 6.9.0

References

NVD β†— CVE.org β†— EPSS Data β†—
patchstack.com: https://patchstack.com/database/vulnerability/yikes-inc-easy-mailchimp-extender/wordpress-easy-forms-for-mailchimp-plugin-6-9-0-broken-access-control-vulnerability?_s_id=cve

Credits

NGΓ” THIÊN AN / ancorn_ from VNPT-VCI (Patchstack Alliance)