4 matches found
CVE-2025-63020
CVE-2025-63020 is a stored cross-site scripting (XSS) vulnerability in the WordPress plugin Postie. The connected Wordfence report identifies an authenticated (Contributor+) path, affecting Postie up to version 1.9.73, with exploitation requiring a Contributor+ user. Technical details confirm the...
WordPress Postie plugin <= 1.9.73 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Jitlada in WordPress Plugin Postie versions = 1.9.73...
WordPress plugin Postie 安全漏洞
WordPress Postie Plugin is a plugin that is mainly used for publishing posts via email. WordPress Postie Plugin suffers from a cross-site scripting vulnerability that stems from the application's lack of effective filtering and escaping of user-supplied data, which can be exploited by an attacker...
CVE-2012-2580
Cross-site scripting XSS vulnerability in the Postie plugin 1.4.3, and possibly before 1.5.15, for WordPress allows remote attackers to inject arbitrary web script or HTML via the From field of an email...