ByteOS Network

Mailster

Source -

CNA

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

4Vulnerabilities found

CVE-2025-64203

Assigner-Patchstack

View Details

Assigner-Patchstack

CVSS Score-7.1||HIGH

EPSS-0.06% / 19.90%

7 Day CHG~0.00%

Published-18 Dec, 2025 | 07:22

Updated-28 Apr, 2026 | 18:24

WordPress Mailster plugin < 4.1.14 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in EverPress Mailster mailster allows Reflected XSS.This issue affects Mailster: from n/a through < 4.1.14.

Vendor-EverPress

Product-Mailster

CWE ID-CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CVE-2024-37433

Assigner-Patchstack

View Details

Assigner-Patchstack

CVSS Score-7.1||HIGH

EPSS-0.17% / 37.36%

7 Day CHG~0.00%

Published-22 Jul, 2024 | 08:24

Updated-11 May, 2026 | 21:03

WordPress Mailster plugin <= 4.0.9 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in EverPress Mailster mailster.This issue affects Mailster: from n/a through <= 4.0.9.

Vendor-mailster EverPress

Product-mailster Mailster

CWE ID-CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CVE-2024-32523

Assigner-Patchstack

View Details

Assigner-Patchstack

CVSS Score-8.1||HIGH

EPSS-47.43% / 97.72%

7 Day CHG~0.00%

Published-17 May, 2024 | 08:58

Updated-11 May, 2026 | 21:01

WordPress Mailster plugin <= 4.0.6 - Unauthenticated Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in EverPress Mailster mailster.This issue affects Mailster: from n/a through <= 4.0.6.

Vendor-EverPress

Product-Mailster

CWE ID-CWE-98

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')

CVE-2024-30503

Assigner-Patchstack

View Details

Assigner-Patchstack

CVSS Score-7.1||HIGH

EPSS-0.26% / 49.79%

7 Day CHG~0.00%

Published-29 Mar, 2024 | 13:02

Updated-28 Apr, 2026 | 16:09

WordPress Mailster plugin <= 4.0.6 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in EverPress Mailster mailster.This issue affects Mailster: from n/a through <= 4.0.6.

Vendor-mailster EverPress

Product-mailster Mailster

CWE ID-CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')