漏洞描述
(CVE-2025-4172)VerticalResponse Newsletter Widget插件存储型跨站脚本漏洞
(CVE-2025-4172)VerticalResponse Newsletter Widget插件存储型跨站脚本漏洞
PoC代码
暂无相关漏洞推荐
- POC wp-newsletter-fpd: WordPress Plugin Newsletter - Full Path Disclosure
- POC wp-widget-logic-fpd: WordPress Widget Logic - Full Path Disclosure
- POC wp-newsletter-log-exposure: WordPress Newsletter - Log File Exposure
- POC wp-image-widget-fpd: Image Widget - Full Path Disclosure
- POC wp-newsletter-fpd: WordPress Plugin Newsletter - Full Path Disclosure
- POC wp-widget-logic-fpd: WordPress Widget Logic - Full Path Disclosure
- CVE-2019-19985: WordPress Plugin Email Subscribers & Newsletters 4.2.2 - Unauthenticated File Download
- POC CVE-2011-4618: Advanced Text Widget < 2.0.2 - Cross-Site Scripting
- POC CVE-2019-19985: WordPress Email Subscribers & Newsletters <4.2.3 - Arbitrary File Retrieval
- POC CVE-2021-24442: Wordpress Polls Widget < 1.5.3 - SQL Injection
- POC CVE-2022-1756: Newsletter < 7.4.5 - Cross-Site Scripting
- POC CVE-2022-4059: Cryptocurrency Widgets Pack < 2.0 - SQL Injection
- POC CVE-2023-27922: Newsletter < 7.6.9 - Cross-Site Scripting