The MailPoet plugin prior to 3.23.2 for WordPress allows remote malicious users to inject arbitrary web script or HTML using extra parameters in the URL (Reflective Server-Side XSS).
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mailpoet mailpoet |