cleantalk
Vulnerabilities and Security Researches

MultiMailer, CVE-2025-32505

CVE, Research URL

CVE-2025-32505

Home page URL

Security reports for MultiMailer

Application

MultiMailer

Published on
Apr 09, 2025
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in SCAND MultiMailer allows Stored XSS. This issue affects MultiMailer: from n/a through 1.0.3.
Affected versions
Min -, max 1.0.3.
Status
vulnerable
Previous vulnerability researches
Booster for WooCommerce (CVE-2024-13708) , Apr 05, 2025
Booster for WooCommerce (CVE-2024-13744) , Apr 05, 2025
Booster for WooCommerce (CVE-2022-3763) , Jun 07, 2024
Booster for WooCommerce (CVE-2021-34646) , Jun 07, 2024
Booster for WooCommerce (CVE-2021-24999) , Jun 07, 2024
New vulnerability
Form Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form Builder (CVE-2024-10680) , Apr 18, 2025
Themify Shortcodes (CVE-2025-39581) , Apr 18, 2025
Asgaros Forum (CVE-2025-39514) , Apr 18, 2025
Total processing card payments for WooCommerce (CVE-2025-32513) , Apr 18, 2025
WordPress Contact Form, Drag and Drop Form Builder Plugin – Live Forms (CVE-2025-39560) , Apr 18, 2025