7.1
CVSSv3

CVE-2025-24598

CVSSv4: NA | CVSSv3: 7.1 | CVSSv2: NA | VMScore: 810 | EPSS: 0.00046 | KEV: Not Included
Published: 04/02/2025 Updated: 04/02/2025

Vulnerability Summary

Reflected Cross-Site Scripting (XSS) Vulnerability in WP Mailster Through 1.8.17.0

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in brandtoss WP Mailster allows Reflected XSS. This issue affects WP Mailster: from n/a up to and including 1.8.17.0.

Solution

Update the WordPress WP Mailster wordpress plugin to the latest available version (at least 1.8.18.0).

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

brandtoss wp mailster