CVE-2024-30522
WordPress Newsletter plugin <= 8.2.0 - IP Blacklist Bypass vulnerabilityAuthentication Bypass by Spoofing vulnerability in Stefano Lissa & The Newsletter Team Newsletter allows Functionality Bypass.This issue affects Newsletter: from n/a through 8.2.0.
We have discovered 34,267 live websites that are affected by CVE-2024-30522.
Affected Software
| Product |  Newsletter |
| Category | Wordpress Plugins |
| Vulnerable Domains | 34,267 live websites (38.65% of Newsletter install base) |
| Vulnerable Versions |
|
| Vulnerable Versions Count | 320 versions ( 86.49% of all versions) |
Common Weakness Enumeration
CWE-290 Authentication Bypass by SpoofingDetails
- Published - May 17, 2024
- Updated - Aug 2, 2024
Credits
- Mika (Patchstack Alliance) (finder)
CWE
CVE References
CWE References
CVE-2024-30522 usage by Country
 United States | 10,246 websites |
 Germany | 5,239 websites |
 France | 2,879 websites |
 Italy | 1,537 websites |
 Poland | 1,489 websites |
 GB | 1,089 websites |
 Russia | 709 websites |
 Spain | 673 websites |
 Netherlands | 654 websites |
 Romania | 577 websites |
CVE-2024-30522 usage by TLD
| .com | 13,656 websites |
| .de | 2,410 websites |
| .org | 1,857 websites |
| .it | 1,190 websites |
| .pl | 1,183 websites |
| .fr | 1,025 websites |
| .net | 745 websites |
| .com.br | 647 websites |
| .co.uk | 636 websites |
| .ru | 545 websites |
Vulnerable Versions
Vulnerable versions are highlighted in redWebsites affected by CVE-2024-30522
Top websites that are affected by CVE-2024-30522. Please click on the "Contact us" link to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| **********.com | United States | *,*** | |
| *********.com | United States | *,*** | |
| **************.com | United States | **,*** | |
| ******.com | United States | **,*** | |
| ************.sk |  Czech Republic | **,*** | |
| ***************.com | United States | **,*** | |
| *******************.com | United States | **,*** | |
| ****.it | Italy | **,*** | |
| **********.com | United States | **,*** | |
| ***********.com | Netherlands | **,*** |
FAQ
CVE-2024-30522 is Authentication Bypass by Spoofing in Newsletter
A total of 34,267 websites have been identified as vulnerable to CVE-2024-30522, discovered through global website indexing conducted by WebTechSurvey.
Newsletter is susceptible to CVE-2024-30522 vulnerability.
Newsletter versions before, and including, 8.2 are vulnerable to CVE-2024-30522.