CVE-2022-2369
Summary: CVE-2022-2369 affects the YaySMTP WordPress plugin (versions prior to 2.2.1). The issue is a missing capability check in an AJAX action, which allows any logged-in user (e.g., subscribers) to view the plugin logs. Impact (as stated): Unauthorized viewing of logs by authenticated users du...