Wordpress Icegram Vulnerabilities

Access Control Flaw in Icegram Plugin by Icegram

CVE-2025-68507

WordPressIcegram6.5MEDIUM

Object Injection Vulnerability in Icegram Express Pro by Icegram

CVE-2025-68038

WordPressIcegram Express Pro9.8CRITICAL

Server-Side Request Forgery Vulnerability in Icegram Express Pro by Icegram

CVE-2025-49917

WordPressIcegram Express Pro4.4MEDIUM

Missing Authorization Vulnerability in Icegram Collect Plugin by Icegram

CVE-2025-47527

WordPressIcegram Collect – Easy...7.1HIGH

Stored Cross-Site Scripting in Icegram Engage WordPress Plugin

CVE-2024-13486

WordPressIcegram Engage👾🟡4.8MEDIUM

Stored Cross-Site Scripting Vulnerability in Icegram Engage Plugin for WordPress

CVE-2024-13482

WordPressIcegram Engage👾🟡4.8MEDIUM

Stored Cross-Site Scripting Vulnerability in Icegram Express Plugin by WordPress

CVE-2025-0671

WordPressIcegram Express👾🟡

Stored Cross-Site Scripting Vulnerability in Icegram Express WordPress Plugin

CVE-2024-11924

WordPressIcegram Express Former...👾🟡3.5LOW

Cross-site Scripting Vulnerability in Icegram Plugin by Icegram

CVE-2025-24542

WordPressIcegram6.5MEDIUM

Stored Cross-Site Scripting Vulnerability in Icegram Express WordPress Plugin

CVE-2024-12568

WordpressEmail Subscribers By I...👾🟡4.8MEDIUM

Stored Cross-Site Scripting Vulnerability in Email Subscribers Plugin by Icegram Express

CVE-2024-12567

WordpressEmail Subscribers By I...👾🟡4.8MEDIUM

Stored Cross-Site Scripting in Email Subscribers by Icegram Express Plugin

CVE-2024-12566

WordpressEmail Subscribers By I...👾🟡4.8MEDIUM

Stored Cross-Site Scripting in Email Subscribers by Icegram Express Plugin for WordPress

CVE-2024-11636

WordpressEmail Subscribers By I...👾🟡4.8MEDIUM

SQL Injection Vulnerability in Email Subscribers Plugin by Icegram Express

CVE-2024-12311

WordpressEmail Subscribers By I...👾🟡6.5MEDIUM

Stored Cross-Site Scripting Vulnerability in Icegram Engage WordPress Plugin

CVE-2024-12302

WordpressIcegram Engage👾🟡6.1MEDIUM

WordPress Icegram Engage plugin <= 3.1.24 - Unauthenticated Message Duplication Vulnerability

CVE-2024-39625

WordPressIcegram5.3MEDIUM

WordPress Icegram Collect plugin <= 1.3.14 - Broken Access Control vulnerability

CVE-2024-43273

WordPressIcegram Collect5.4MEDIUM

Arbitrary Shortcode Execution Vulnerability in Email Subscribers

CVE-2024-8254

WordpressEmail Subscribers By I...6.3MEDIUM

Unauthorized Access to Sensitive Data in Email Subscribers Plugin

CVE-2024-8771

WordpressEmail Subscribers By I...4.3MEDIUM

Icegram XSS Vulnerability Affects Stored XSS

CVE-2024-43344

WordPressIcegram6.5MEDIUM

Unauthorized API Access Vulnerability in Email Subscribers for WordPress & WooCommerce

CVE-2024-5703

WordpressEmail Subscribers By I...4.3MEDIUM

Email Subscribers Vulnerable to Time-Based SQL Injection

CVE-2024-5756

WordpressEmail Subscribers By I...9.8CRITICAL

SQL Injection Vulnerability in Icegram Express Plugin Affects Sensitive Data Extraction

CVE-2024-4845

WordpressIcegram Express8.8HIGH

Missing Authorization vulnerability in Icegram

CVE-2024-21748

WordPressIcegram5.4MEDIUM

Unauthorized Access to Private and Password-Protected Posts in Email Subscribers Plugin

CVE-2024-3626

WordpressEmail Subscribers By I...4.3MEDIUM

Vulnerability Published:

Sort By:

22 January 2026

Access Control Flaw in Icegram Plugin by Icegram

24 December 2025

Object Injection Vulnerability in Icegram Express Pro by Icegram

22 October 2025

Server-Side Request Forgery Vulnerability in Icegram Express Pro by Icegram

9 June 2025

Missing Authorization Vulnerability in Icegram Collect Plugin by Icegram

15 May 2025

Stored Cross-Site Scripting in Icegram Engage WordPress Plugin

Stored Cross-Site Scripting Vulnerability in Icegram Engage Plugin for WordPress

25 April 2025

Stored Cross-Site Scripting Vulnerability in Icegram Express Plugin by WordPress

17 April 2025

Stored Cross-Site Scripting Vulnerability in Icegram Express WordPress Plugin

24 January 2025

Cross-site Scripting Vulnerability in Icegram Plugin by Icegram

13 January 2025

Stored Cross-Site Scripting Vulnerability in Icegram Express WordPress Plugin

Stored Cross-Site Scripting Vulnerability in Email Subscribers Plugin by Icegram Express

Stored Cross-Site Scripting in Email Subscribers by Icegram Express Plugin

Stored Cross-Site Scripting in Email Subscribers by Icegram Express Plugin for WordPress

6 January 2025

SQL Injection Vulnerability in Email Subscribers Plugin by Icegram Express

Stored Cross-Site Scripting Vulnerability in Icegram Engage WordPress Plugin

1 November 2024

WordPress Icegram Engage plugin <= 3.1.24 - Unauthenticated Message Duplication Vulnerability

WordPress Icegram Collect plugin <= 1.3.14 - Broken Access Control vulnerability

2 October 2024

Arbitrary Shortcode Execution Vulnerability in Email Subscribers

26 September 2024

Unauthorized Access to Sensitive Data in Email Subscribers Plugin

18 August 2024

Icegram XSS Vulnerability Affects Stored XSS

17 July 2024

Unauthorized API Access Vulnerability in Email Subscribers for WordPress & WooCommerce

21 June 2024

Email Subscribers Vulnerable to Time-Based SQL Injection

12 June 2024

SQL Injection Vulnerability in Icegram Express Plugin Affects Sensitive Data Extraction

8 June 2024

Missing Authorization vulnerability in Icegram

23 May 2024

Unauthorized Access to Private and Password-Protected Posts in Email Subscribers Plugin