5 matches found
CVE-2025-69102
CVE-2025-69102 is a Reflected Cross-Site Scripting (XSS) vulnerability affecting the WordPress plugin WP Test Email (wp-test-email) versions up to and including 1.1.7. The issue is described as improper neutralization of input during web page generation, enabling reflected XSS. Public references ...
EUVD-2025-6633
Malicious code in bioql PyPI...
CVE-2025-2325
CVE-2025-2325 affects the WordPress plugin WP Test Email. The vulnerability is an unauthenticated stored XSS via Email Logs in all versions up to 1.1.8, caused by insufficient input sanitization and output escaping. Exploitation could inject scripts that execute when users load injected pages. Th...
CVE-2024-8664
The WP Test Email plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 1.1.7. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages...
CVE-2024-8664
CVE-2024-8664 : The WP Test Email plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to insufficient escaping when using add_query_arg in the URL for all versions up to and including 1.1.7. This allows unauthenticated attackers to trigger/script injection on pages that a use...