7.1
CVSSv3

CVE-2025-24559

CVSSv4: NA | CVSSv3: 7.1 | CVSSv2: NA | VMScore: 810 | EPSS: 0.00046 | KEV: Not Included
Published: 03/02/2025 Updated: 03/02/2025

Vulnerability Summary

Reflected Cross-Site Scripting Vulnerability in WP Mailster Plugin Before 1.8.15.0

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in brandtoss WP Mailster allows Reflected XSS. This issue affects WP Mailster: from n/a up to and including 1.8.15.0.

Solution

Update the WordPress WP Mailster plugin to the latest available version (at least 1.8.16.0).
Vulnerable Product Search on Vulmon Subscribe to Product

brandtoss wp mailster