Nks Email Subscription Popup vulnerabilities
2 known vulnerabilities affecting nks/email_subscription_popup.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2025-24587P3HIGHCVSS 7.6≤ 1.2.232025-01-24
CVE-2025-24587 [HIGH] CWE-89 CVE-2025-24587: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Nks Email Subscription Popup email-subscribe allows Blind SQL Injection.This issue affects Email Subscription Popup: from n/a through <= 1.2.23.
nvd
CVE-2025-49912P4MEDIUMCVSS 5.9≤ 1.2.262025-10-22
CVE-2025-49912 [MEDIUM] CWE-79 CVE-2025-49912: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability i
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Nks Email Subscription Popup email-subscribe allows Stored XSS.This issue affects Email Subscription Popup: from n/a through <= 1.2.26.
nvd