2 matches found
CVE-2019-25141
creationtimestamp| type| source ---|---|--- 2025-05-29 17:22:45+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2019/CVE-2019-25141.yaml 2025-05-31 21:02:17+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lqingbmgah2a 2026-05-23...
CVE-2019-25141
CVE-2019-25141 affects the Easy WP SMTP WordPress plugin up to version 1.3.9. The root cause is missing capability checks on the admin_init() function plus insufficient input validation, enabling unauthenticated attackers to modify plugin settings and arbitrary site options, including injecting n...