Version 4.9.6

SEMANTIC 2 CVEs

Known Vulnerabilities

CVE-2024-35718

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Tribulant Newsletters allows Reflected XSS.This issue affects Newsletters: from n/a through 4.9.5.

HIGH CVSS 7.1 Published Jun 08, 2024

CVE-2024-32954

Unrestricted Upload of File with Dangerous Type vulnerability in Tribulant Newsletters.This issue affects Newsletters: from n/a through 4.9.5.

CRITICAL CVSS 9.1 Published Apr 24, 2024