A vulnerability, which was classified as problematic, was found in Newsletters Plugin up to 4.9.9.9 on WordPress. This affects an unknown part. The manipulation of the argument File leads to file inclusion.
This vulnerability is uniquely identified as CVE-2025-4857. It is possible to initiate the attack remotely. There is no exploit available.