Browse all 5 CVE security advisories affecting sendpulse. AI-powered Chinese analysis, POCs, and references for each vulnerability.
SendPulse provides an all-in-one digital marketing platform including email campaigns, chatbots, and CRM solutions. Historically, the platform has been affected by vulnerabilities such as cross-site scripting (XSS), remote code execution (RCE), and privilege escalation flaws. Notable security characteristics include its multi-channel approach requiring robust authentication and data handling across various services. While no major public security incidents have been widely reported, the five CVEs on record highlight potential risks in areas like input validation and access control. Organizations using SendPulse should maintain regular security updates and implement proper segmentation to mitigate potential exposure from these vulnerabilities.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-67948 | WordPress SendPulse Email Marketing Newsletter plugin <= 2.2.1 - Sensitive Data Exposure vulnerability — SendPulse Email Marketing NewsletterCWE-497 | 4.3 | Medium | 2025-12-16 |
| CVE-2025-47547 | WordPress SendPulse Email Marketing Newsletter plugin <= 2.1.6 - Cross Site Scripting (XSS) Vulnerability — SendPulse Email Marketing NewsletterCWE-79 | 6.5 | Medium | 2025-05-07 |
| CVE-2025-22662 | WordPress SendPulse Email Marketing Newsletter plugin <= 2.1.5 - Cross Site Scripting (XSS) vulnerability — SendPulse Email Marketing NewsletterCWE-79 | 6.5 | Medium | 2025-02-04 |
| CVE-2024-9184 | SendPulse Free Web Push <= 1.3.6 - Unauthenticated Stored Cross-Site Scripting — SendPulse Free Web PushCWE-79 | 7.2 | High | 2024-10-17 |
| CVE-2023-45274 | WordPress SendPulse Free Web Push Plugin <= 1.3.1 is vulnerable to Cross Site Request Forgery (CSRF) — SendPulse Free Web PushCWE-352 | 4.3 | Medium | 2023-10-16 |
This page lists every published CVE security advisory associated with sendpulse. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.