CVE-2025-47540 WordPress weMail plugin <= 1.14.13 - Sensitive Data Exposure Vulnerability

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in weDevs weMail wemail allows Retrieve Embedded Sensitive Data.This issue affects weMail: from n/a through = 1.14.13...

WordPress weMail plugin <= 1.14.2 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Dhabaleshwar Das Patchstack Alliance in WordPress Plugin weMail versions = 1.14.2...

WordPress weMail Plugin <= 1.14.2 is vulnerable to Broken Access Control

Software weMail Type Plugin Vulnerable versions = 1.14.2 Fixed in 1.14.3 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-34822 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 0390ae236e1f Credits Dhabaleshwar Das Required privilege...

WordPress weMail Plugin <= 1.14.1 is vulnerable to Cross Site Request Forgery (CSRF)

Software weMail Type Plugin Vulnerable versions = 1.14.1 Fixed in 1.14.2 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2022-47150 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 65136c30deb2 Credits István Márton Required...