Cross-site Scripting (XSS)

Overview phpList/phplist3 is a popular open source newsletter manager. Affected versions of this package are vulnerable to Cross-site Scripting XSS due to improper input sanitization in lt.php. Details Cross-site scripting or XSS is a code vulnerability that occurs when an attacker “injects” a...

Exploit for Cross-site Scripting in Phplist

CVE-2025-28074 Suggested description phpList prior to 3.6.3...