CVE-2025-32517 WordPress MultiMailer plugin <= 1.0.3 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SCAND MultiMailer allows Reflected XSS. This issue affects MultiMailer: from n/a through 1.0.3...

CVE-2025-32517

CVE-2025-32517 is a Reflected Cross-Site Scripting (XSS) in the SCAND MultiMailer WordPress plugin. Affected versions are up to 1.0.3 (per initial details). CVSS v3.1 metrics show a base score of 7.1 (HIGH), with AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L. The Connected documents indicate the vulnerabil...

WordPress MultiMailer plugin <= 1.0.3 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by thiennv in WordPress Plugin MultiMailer versions = 1.0.3...

WordPress MultiMailer plugin <= 1.0.3 - CSRF to Stored XSS vulnerability

CSRF to Stored XSS vulnerability discovered by SOPROBRO in WordPress Plugin MultiMailer versions = 1.0.3...