Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Newspack Newsletters — Vulnerabilities & Security Advisories 3

All 3 CVE vulnerabilities found in Newspack Newsletters, with AI-generated Chinese analysis, references, and POCs.

Vendor: Automattic

CVE IDTitleCVSSSeverityPublished
CVE-2025-49325 WordPress Newspack Newsletters plugin <= 3.13.0 - Open Redirection Vulnerability CWE-601 4.7 Medium2025-06-06
CVE-2024-37242 WordPress Newspack Newsletters plugin <= 2.13.2 - Cross Site Request Forgery (CSRF) vulnerability CWE-352 4.3 Medium2025-01-02
CVE-2024-37475 WordPress Newspack Newsletters plugin <= 2.13.2 - Broken Access Control vulnerability CWE-862 5.3 Medium2024-11-01

All 3 known CVE vulnerabilities affecting Newspack Newsletters with full Chinese analysis, references, and POCs where available.