Browse all 3 CVE security advisories affecting etemplates. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Etemplates provides email template solutions for marketing automation, enabling businesses to design and deliver personalized email campaigns. Historically, the platform has been vulnerable to multiple security issues including cross-site scripting (XSS) and remote code execution (RCE) flaws, often stemming from improper input validation and insecure template rendering. The three recorded CVEs highlight persistent security concerns, with vulnerabilities allowing attackers to execute arbitrary code or inject malicious scripts through crafted template inputs. While no major public incidents have been widely documented, the pattern of vulnerabilities suggests ongoing challenges in securing dynamic content rendering and user input processing within their email template system.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-23471 | WordPress ECT Add to Cart Button plugin <= 1.4 - CSRF to Stored XSS vulnerability — ECT Add to Cart ButtonCWE-352 | 7.1 | High | 2025-01-16 |
This page lists every published CVE security advisory associated with etemplates. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.