Cross-site scripting vulnerability in Newsletter versions prior to 7.6.9 allows a remote unauthenticated attacker to inject an arbitrary script.
[
{
"vendor": "Stefano Lissa & The Newsletter Team",
"product": "Newsletter",
"versions": [
{
"version": "versions prior to 7.6.9",
"status": "affected"
}
]
}
]