Vulnerabilities > Wpmailster > WP Mailster > 1.4.8

DATE CVE VULNERABILITY TITLE RISK
2017-12-07 CVE-2017-17451 Cross-site Scripting vulnerability in Wpmailster WP Mailster
The WP Mailster plugin before 1.5.5 for WordPress has XSS in the unsubscribe handler via the mes parameter to view/subscription/unsubscribe2.php.
network
wpmailster CWE-79
4.3
4.3