CVE-2025-66055 | THREATINT

Description

Deserialization of Untrusted Data vulnerability in Icegram Email Subscribers & Newsletters email-subscribers allows Object Injection.This issue affects Email Subscribers & Newsletters: from n/a through <= 5.9.10.

PUBLISHED Reserved 2025-11-21 | Published 2025-11-21 | Updated 2025-11-21 | Assigner Patchstack

Problem types

Deserialization of Untrusted Data

Product status

Default status

unaffected

Any version

affected

Credits

Ananda Dhakal (Patchstack) finder

References

vdp.patchstack.com/...ject-injection-vulnerability?_s_id=cve vdb-entry

cve.org (CVE-2025-66055)

nvd.nist.gov (CVE-2025-66055)

Download JSON