cleantalk
Vulnerabilities and Security Researches

Popup, Optin Form & Email Newsletters for Mailchimp, HubSpot, AWeber – MailOptin, CVE-2025-58596

CVE, Research URL

CVE-2025-58596

Home page URL

Security reports for Popup, Optin Form & Email Newsletters for Mailchimp, HubSpot, AWeber – MailOptin

Application

Popup, Optin Form & Email Newsletters for Mailchimp, HubSpot, AWeber – MailOptin

Published on
Sep 03, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in properfraction MailOptin allows Stored XSS. This issue affects MailOptin: from n/a through 1.2.75.0.
Affected versions
Min -, max 1.2.75.1.
Status
vulnerable
Previous vulnerability researches
XM-Backup (CVE-2025-48109) , Aug 30, 2025
New vulnerability
Get Cash (CVE-2025-58823) , Sep 07, 2025
WP Notification Bell (CVE-2025-58821) , Sep 07, 2025
Social Sharing Plugin – Kiwi (CVE-2025-58790) , Sep 07, 2025
WPB Image Widget (CVE-2025-58858) , Sep 07, 2025
Notification for Telegram (CVE-2025-58794) , Sep 07, 2025