Subscribe2 – Form, Email Subscribers & Newsletters

Vulnerabilities 12Slug subscribe2Latest version 10.45WordPress.org →

Minimum safe version

10.45

Update to 10.45 or later to address 12 fixable vulnerabilities

Latest available10.45 ✓

Medium 6.5

2026-02-20< 10.45

CVE-2026-24944

CVE Wordfence

High 7.2

2025-02-19< 10.44

CVE-2024-11582

CVE EUVD Patchstack Wordfence

N/A

0000-00-00< 10.43

CVE-2024-32110

CVE Patchstack

N/A

< 8.1

Subscribe2 <= 8.0 - Cross Site Scripting

WPScan

Medium 4.3

2023-06-28< 10.41

CVE-2023-3407

CVE Wordfence Patchstack WPScan

Medium 4.3

2023-06-28< 10.41

CVE-2023-1844

CVE Wordfence Patchstack WPScan

N/A

2023-03-21< 10.38

WordPress Subscribe2 Plugin <= 10.37 is vulnerable to Cross Site Request Forgery (CSRF)

Patchstack CVE

N/A

2014-08-01< 8.1

Subscribe2 – Form, Email Subscribers & Newsletters < 8.1 - Multiple Cross-Site Scripting

Wordfence

N/A

2022-12-14< 10.38

Appsero <= 1.2.0 - Cross-Site Request Forgery

Wordfence

Low 3.1

2023-01-16< 10.38

CVE-2022-4309

CVE Patchstack Wordfence WPScan

N/A

2015-05-15< 8.1

WordPress Subscribe2 Plugin <= 8.0 - Cross Site Scripting

Patchstack

Medium 6.1

2018-03-29< 10.16

CVE-2014-6604

CVE Wordfence WPScan