Lucene search
+L

4 matches found

nvd
nvd
added 2025/03/15 7:15 a.m.10 views

CVE-2025-2325

The WP Test Email plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Email Logs in all versions up to, and including, 1.1.8 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages...

7.2CVSS0.00274EPSS
Exploits0References2
cvelist
cvelist
added 2025/03/15 6:40 a.m.21 views

CVE-2025-2325 WP Test Email <= 1.1.8 - Unauthenticated Stored Cross-Site Scripting

The WP Test Email plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Email Logs in all versions up to, and including, 1.1.8 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages...

7.2CVSS0.00274EPSS
Exploits0References2
cve
cve
added 2025/03/15 6:40 a.m.65 views

CVE-2025-2325

CVE-2025-2325 affects the WordPress plugin WP Test Email. The vulnerability is an unauthenticated stored XSS via Email Logs in all versions up to 1.1.8, caused by insufficient input sanitization and output escaping. Exploitation could inject scripts that execute when users load injected pages. Th...

7.2CVSS6.3AI score0.00274EPSS
Exploits0References2Affected Software1
vulnrichment
vulnrichment
added 2025/03/15 6:40 a.m.5 views

CVE-2025-2325 WP Test Email <= 1.1.8 - Unauthenticated Stored Cross-Site Scripting

The WP Test Email plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Email Logs in all versions up to, and including, 1.1.8 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages...

7.2CVSS6.3AI score0.00274EPSS
Exploits0References2
Rows per page
Query Builder