Filter

Versions

2.10.2
8
3.2.6
8
2.10.1
7
2.10.3
7
2.10.4
7
2.10.5
7
3.5.3
7
3.5.4
7
2.10.10
6
2.10.11
6
2.10.12
6
2.10.13
6
2.10.14
6
2.10.15
6
2.10.16
6
2.10.17
6
2.10.7
6
2.10.8
6
2.10.9
6
2.10.18
4
2.6.5
4
2.7.1
4
2.7.2
4
2.8.12
4
2.8.2
4
2.8.7
4
2.10.6
1
3.0.0
1
3.0.1
1
3.0.2
1
3.0.3
1
3.0.4
1
3.0.5
1
3.5.0
1
3.5.1
1
3.5.9
1
3.6.0
1
3.6.12
1

phpListAn issue was discovered in phpList 3.6.12. Due to an access error, it was possible to manipulate and…

medium
6.7
First published (updated )
CVE-2023-27576

phpListXSS

medium
4.3
First published (updated )
CVE-2012-4246

phpListXSS

medium
4.3
First published (updated )
CVE-2012-4247

phpListCode Injection

high
7.5
First published (updated )
CVE-2008-6178

phpListSQL Injection

high
7.5
First published (updated )
CVE-2012-3953

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

phpListXSS

low
2.6
First published (updated )
CVE-2012-3952

phpListCSRF

medium
6.8
First published (updated )
CVE-2014-2916

phpListPHPList Subscription sql injection

critical
9.8
First published (updated )
CVE-2017-20032

phpListPHPList Sending Campain sql injection

high
7.2
First published (updated )
CVE-2017-20030

phpListPHPList Bounce Rule Persistent cross site scriting

medium
5.4
First published (updated )
CVE-2017-20036

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

phpListPHPList List Name Persistent cross site scriting

medium
5.4
First published (updated )
CVE-2017-20034

phpListPHPList Subscribe Persistent cross site scriting

medium
5.4
First published (updated )
CVE-2017-20035

phpListPHPList Edit Subscription index.php sql injection

critical
9.8
First published (updated )
CVE-2017-20029

phpListPHPList information disclosure

medium
4
First published (updated )
CVE-2017-20031

phpListPHPList Reflected cross site scriting

medium
6.1
First published (updated )
CVE-2017-20033

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

phpListXSS

medium
5.4
First published (updated )
CVE-2020-36399

phpListXSS

medium
5.4
First published (updated )
CVE-2020-36398

phpListSQL Injection

high
7.2
First published (updated )
CVE-2020-35708

phpListphpList 3.5.3 allows type juggling for login bypass because == is used instead of === for password h…

critical
9.8
First published (updated )
CVE-2020-23361

phpListXSS

medium
5.4
First published (updated )
CVE-2020-23214

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

phpListXSS

medium
5.4
First published (updated )
CVE-2020-23209

phpListXSS

medium
5.4
First published (updated )
CVE-2020-23192

phpListXSS

medium
5.4
First published (updated )
CVE-2020-23208

phpListXSS

medium
5.4
First published (updated )
CVE-2020-23190

phpListXSS

medium
5.4
First published (updated )
CVE-2020-23194

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

phpListXSS

medium
5.4
First published (updated )
CVE-2020-23217

phpListXSS

medium
5.4
First published (updated )
CVE-2020-23207

phpListMalicious File Upload

critical
9.8
First published (updated )
CVE-2020-22249

phpListXSS

medium
4.8
First published (updated )
CVE-2020-22251

phpListSQL Injection

high
8.8
First published (updated )
CVE-2020-15072

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203