Analysis
Analysis and contextual insights are available on OpenCVE Cloud.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| Tribulant Software | Newsletters | unaffected |
|
No data.
No data.
No data available yet.
Vendor Solution
Update the WordPress Newsletters Plugin to the latest available version (at least 4.14).
Tracking
Sign in to view the affected projects.
No advisories yet.
Fri, 26 Jun 2026 18:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Fri, 26 Jun 2026 15:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | newsletters_subscribers Broken Access Control in Newsletters <= 4.13 versions. | |
| Title | WordPress Newsletters plugin <= 4.13 - Broken Access Control vulnerability | |
| Weaknesses | CWE-862 | |
| References |
| |
| Metrics |
cvssV3_1
|
Subscriptions
No data.
MITRE
Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2026-06-26T17:42:27.162Z
Reserved: 2026-06-25T08:03:17.056Z
Link: CVE-2026-57645
Vulnrichment
Updated: 2026-06-26T17:26:40.422Z
NVD
No data.
Redhat
No data.
OpenCVE Enrichment
Updated: 2026-06-26T17:45:03Z