Full title: WordPress Tribulant Newsletters 4.6.4.2 XSS / File Disclosure Vulnerabilities Category: web applications Platform: php WordPress Tribulant Newsletters plugin versions 4.6.4.2 and below suffer from cross site scripting and file disclosure vulnerabilities. # 0day.today @ http://0day.today/