4 matches found
CVE-2025-22662
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SendPulse SendPulse Email Marketing Newsletter sendpulse-email-marketing-newsletter allows Stored XSS.This issue affects SendPulse Email Marketing Newsletter: from n/a through = 2.1.5...
CVE-2025-22662
creationtimestamp| type| source ---|---|--- 2025-02-04 15:16:19+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhedytwij52b 2025-02-04 18:54:41+00:00| seen| https://t.me/cvedetector/17220...
CVE-2025-22662 WordPress SendPulse Email Marketing Newsletter plugin <= 2.1.5 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SendPulse SendPulse Email Marketing Newsletter sendpulse-email-marketing-newsletter allows Stored XSS.This issue affects SendPulse Email Marketing Newsletter: from n/a through = 2.1.5...
CVE-2025-22662
CVE-2025-22662 describes a Cross-Site Scripting (XSS) vulnerability in the WordPress plugin SendPulse Email Marketing Newsletter (versions up to and including 2.1.5). The root cause is improper neutralization of input during web page generation , enabling stored XSS. Public disclosures in multipl...