3 matches found
PT-2023-11368 · WordPress · Easy Wp Smtp
Name of the Vulnerable Software and Affected Versions: Easy WP SMTP plugin for WordPress versions up to, and including, 1.3.9 Description: The issue is due to missing capability checks on the admin init function, in addition to insufficient input validation. This allows unauthenticated attackers ...
CVE-2017-7723
XSS exists in Easy WP SMTP before 1.2.5, a WordPress Plugin, via the e-mail subject or body...
VulnCheck KEV: CVE-2019-25141
The Easy WP SMTP plugin for WordPress is vulnerable to authorization bypass in versions up to, and including, 1.3.9. This is due to missing capability checks on the admininit function, in addition to insufficient input validation. This makes it possible for unauthenticated attackers to...