Lucene search
+L

179 matches found

ptsecurity
ptsecurity
added 2025/02/14 12:0 a.m.8 views

PT-2025-7032 · WordPress · Wp Mailster

Name of the Vulnerable Software and Affected Versions: WP Mailster versions 1.8.20.0 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Reflected XSS. This enables potential attackers to inject...

7.1CVSS9.4AI score0.00246EPSS
Exploits0References5
cnnvd
cnnvd
added 2025/02/14 12:0 a.m.2 views

WordPress plugin WP Mailster 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A cross-site...

7.1CVSS8.2AI score0.00246EPSS
Exploits0References2
cnnvd
cnnvd
added 2025/02/14 12:0 a.m.14 views

WordPress plugin WP Mailster 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

6.5CVSS6.2AI score0.00388EPSS
Exploits0References2
redhatcve
redhatcve
added 2025/02/07 9:49 a.m.14 views

CVE-2025-24598

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in brandtoss WP Mailster wp-mailster allows Reflected XSS.This issue affects WP Mailster: from n/a through = 1.8.17.0...

7.1CVSS7.2AI score0.00251EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/02/07 9:49 a.m.10 views

CVE-2025-24559

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in brandtoss WP Mailster wp-mailster allows Reflected XSS.This issue affects WP Mailster: from n/a through = 1.8.15.0...

7.1CVSS5.9AI score0.00305EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/02/05 9:47 a.m.9 views

CVE-2024-30503

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in EverPress Mailster mailster.This issue affects Mailster: from n/a through = 4.0.6...

7.1CVSS7.2AI score0.00426EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/02/05 7:12 a.m.6 views

CVE-2024-32523

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in EverPress Mailster mailster.This issue affects Mailster: from n/a through = 4.0.6...

8.1CVSS5.9AI score0.01754EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/02/05 12:39 a.m.9 views

CVE-2024-37433

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in EverPress Mailster mailster.This issue affects Mailster: from n/a through = 4.0.9...

7.1CVSS5.9AI score0.00274EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/02/04 10:25 p.m.5 views

CVE-2024-53807

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in brandtoss WP Mailster wp-mailster allows Blind SQL Injection.This issue affects WP Mailster: from n/a through = 1.8.16.0...

9.8CVSS7.3AI score0.00459EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/02/04 10:22 p.m.7 views

CVE-2024-53805

Missing Authorization vulnerability in brandtoss WP Mailster wp-mailster allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Mailster: from n/a through = 1.8.16.0...

9.8CVSS7.2AI score0.00565EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/02/04 10:19 p.m.12 views

CVE-2024-53804

Insertion of Sensitive Information Into Sent Data vulnerability in brandtoss WP Mailster wp-mailster allows Retrieve Embedded Sensitive Data.This issue affects WP Mailster: from n/a through = 1.8.16.0...

7.5CVSS7.2AI score0.00577EPSS
Exploits0References1
nvd
nvd
added 2025/02/04 3:15 p.m.37 views

CVE-2025-24598

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in brandtoss WP Mailster wp-mailster allows Reflected XSS.This issue affects WP Mailster: from n/a through = 1.8.17.0...

7.1CVSS0.00251EPSS
Exploits0References1
osv
osv
added 2025/02/04 3:15 p.m.3 views

CVE-2025-24598

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in brandtoss WP Mailster allows Reflected XSS. This issue affects WP Mailster: from n/a through 1.8.17.0...

6.1CVSS5.8AI score0.00251EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2025/02/04 2:21 p.m.8 views

CVE-2025-24598 WordPress WP Mailster plugin <= 1.8.17.0 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in brandtoss WP Mailster wp-mailster allows Reflected XSS.This issue affects WP Mailster: from n/a through = 1.8.17.0...

7.1CVSS7.2AI score0.00251EPSS
Exploits0References1
cve
cve
added 2025/02/04 2:21 p.m.59 views

CVE-2025-24598

CVE-2025-24598 affects the WordPress plugin WP Mailster by brandtoss. The vulnerability is a Reflected XSS caused by improper neutralization of input during web page generation, allowing an attacker‑supplied payload to be reflected in the response. Affected version range: WP Mailster from n/a up ...

7.1CVSS7.2AI score0.00251EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2025/02/04 2:21 p.m.42 views

CVE-2025-24598 WordPress WP Mailster plugin <= 1.8.17.0 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in brandtoss WP Mailster wp-mailster allows Reflected XSS.This issue affects WP Mailster: from n/a through = 1.8.17.0...

7.1CVSS0.00251EPSS
Exploits0References1
cnnvd
cnnvd
added 2025/02/04 12:0 a.m.4 views

WordPress plugin WP Mailster 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A cross-site...

7.1CVSS7.7AI score0.00251EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2025/02/04 12:0 a.m.5 views

PT-2025-5434 · WordPress · Wp Mailster

Name of the Vulnerable Software and Affected Versions: WP Mailster versions 1.8.17.0 and earlier Description: The issue is related to improper neutralization of input during web page generation, which allows reflected Cross-site Scripting XSS. This enables attackers to inject malicious scripts in...

7.1CVSS9.1AI score0.00251EPSS
Exploits0References7
osv
osv
added 2025/02/03 3:15 p.m.5 views

CVE-2025-24559

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in brandtoss WP Mailster allows Reflected XSS. This issue affects WP Mailster: from n/a through 1.8.15.0...

6.1CVSS5.8AI score0.00305EPSS
Exploits0References1
nvd
nvd
added 2025/02/03 3:15 p.m.11 views

CVE-2025-24559

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in brandtoss WP Mailster wp-mailster allows Reflected XSS.This issue affects WP Mailster: from n/a through = 1.8.15.0...

7.1CVSS0.00305EPSS
Exploits0References1
Rows per page
Query Builder