CVE-2025-64203

Name of the Vulnerable Software and Affected Versions EverPress Mailster versions prior to 4.1.14

Description The software contains a flaw due to improper handling of user-supplied data when creating web pages, leading to a Reflected Cross-Site Scripting (XSS) condition. This allows an attacker to inject malicious scripts into a web page viewed by other users. The mailster component is affected.

Recommendations Update EverPress Mailster to version 4.1.14 or later.