{"id":"CVE-2016-10871","details":"The mailchimp-for-wp plugin before 4.0.11 for WordPress has XSS on the integration settings page.","modified":"2026-04-10T03:48:18.379615Z","published":"2019-08-13T17:15:12.953Z","references":[{"type":"ADVISORY","url":"https://wordpress.org/plugins/mailchimp-for-wp/#developers"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/ibericode/mailchimp-for-wordpress","events":[{"introduced":"0"},{"fixed":"052d66fc5b4ccf256bddebf402259d71bc57c538"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"4.0.11"}]}}],"versions":["2.0.2","2.0.3","2.0.4","2.0.5","2.1","2.1.1","2.1.2","2.1.4","2.1.6","2.1.7","2.2","2.2.1","2.2.2","2.2.3","2.2.4","2.2.5","2.2.6","2.2.7","2.2.8","2.2.9","2.3","2.3.1","2.3.10","2.3.11","2.3.12","2.3.13","2.3.14","2.3.15","2.3.16","2.3.17","2.3.18","2.3.2","2.3.3","2.3.4","2.3.5","2.3.6","2.3.7","2.3.8","2.3.9","3.0.10","3.0.11","3.0.12","3.0.2","3.0.3","3.0.4","3.0.6","3.0.7","3.0.8","3.0.9","3.1","3.1.1","3.1.2","3.1.3","4.0","4.0.1","4.0.10","4.0.2","4.0.3","4.0.4","4.0.5","4.0.6","4.0.7","4.0.9"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-10871.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}]}