cleantalk
Vulnerabilities and Security Researches

Arigato Autoresponder and Newsletter, CVE-2025-39594

CVE, Research URL

CVE-2025-39594

Home page URL

Security reports for Arigato Autoresponder and Newsletter

Application

Arigato Autoresponder and Newsletter

Published on
Apr 17, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Bob Arigato Autoresponder and Newsletter allows Reflected XSS. This issue affects Arigato Autoresponder and Newsletter: from n/a through 2.7.2.4.
Affected versions
Min -, max 2.7.2.5.
Status
vulnerable
Previous vulnerability researches
Nova Blocks by Pixelgrade (CVE-2024-8241) , Sep 11, 2024
Nova Blocks by Pixelgrade (CVE-2025-31819) , Apr 04, 2025
New vulnerability
WP Logger (CVE-2025-39456) , Apr 20, 2025
visualslider Sldier (CVE-2025-23448) , Apr 20, 2025
RSS Manager (CVE-2025-39418) , Apr 20, 2025
Contact Form vCard Generator (CVE-2025-39521) , Apr 20, 2025
AdminQuickbar (CVE-2025-39464) , Apr 20, 2025