cleantalk
Vulnerabilities and Security Researches

Mailster WordPress Newsletter Plugin Compatibility Tester, 1706fa51bc91d338c39038c7ab388537d6a12270

CVE, Research URL

1706fa51bc91d338c39038c7ab388537d6a12270

Home page URL

Security reports for Mailster WordPress Newsletter Plugin Compatibility Tester

Application

Mailster WordPress Newsletter Plugin Compatibility Tester

Published on
Oct 14, 2020
Research Description
Mailster WordPress Newsletter Plugin [mailster] < 2.4.9 Mailster <= 2.4.5.1 - Stored Cross-Site Scripting The Mailster plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the administration interface in versions up to, and including, 2.4.5.1 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
Affected versions
max 2.4.9.
Status
vulnerable
Previous vulnerability researches
MapifyLite (by MapifyPro) (e5bfd53d-0d9a-42f2-8af8-5bb710bac828) , Jun 16, 2026
MapifyLite (by MapifyPro) (6be590d56cf666ad67a6e008b71242e607d966ea) , Jun 16, 2026
MapifyLite (by MapifyPro) (d7a357e358b4eb001b41f84d3531981914480734) , Jun 07, 2024
New vulnerability
Request a Quote (359a61d5705c479c547aeae7536b6ad5e6d3b1c8) , Jun 16, 2026
Request a Quote (6eba2aa8fd71d4ea7dd969e0a5b52e3f1366a2fa) , Jun 16, 2026
Request a Quote (4bc92bf8b452fa0f54703c576853e3a3e56157bd) , Jun 16, 2026
Request a Quote (5e7ad671f8a77a469a90b6a2aae807bbb1bc5199) , Jun 16, 2026
WP Tools Divi Product Carousel (d2857175794c39e5c1d58063dbe17bd1f0436931) , Jun 16, 2026