Browse all 4 CVE security advisories affecting Zoho Campaigns. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Zoho Campaigns serves as an email marketing platform enabling businesses to design, send, and track email campaigns. Historically, it has been susceptible to various vulnerabilities including remote code execution, cross-site scripting, and privilege escalation flaws. The platform has accumulated four CVE records, highlighting ongoing security challenges. While no major public security incidents have been widely documented, the presence of multiple CVEs indicates potential attack surfaces that could be exploited by malicious actors. Organizations using this service should maintain vigilance with security updates and access controls to mitigate risks associated with these documented vulnerabilities.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-38752 | WordPress Zoho Campaigns plugin <= 2.0.8 - Cross Site Scripting (XSS) vulnerability — Zoho CampaignsCWE-79 | 6.5 | Medium | 2024-08-13 |
| CVE-2024-32441 | WordPress Zoho Campaigns plugin <= 2.0.7 - Cross Site Request Forgery (CSRF) vulnerability — Zoho CampaignsCWE-352 | 4.3 | Medium | 2024-04-15 |
| CVE-2024-32442 | WordPress Zoho Campaigns plugin <= 2.0.7 - Cross Site Request Forgery (CSRF) vulnerability — Zoho CampaignsCWE-352 | 4.3 | Medium | 2024-04-15 |
| CVE-2024-30239 | WordPress Zoho Campaigns plugin <= 2.0.6 - SQL Injection vulnerability — Zoho CampaignsCWE-89 | 8.5 | High | 2024-03-28 |
This page lists every published CVE security advisory associated with Zoho Campaigns. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.