4 matches found
CVE-2023-5958
The POST SMTP Mailer WordPress plugin before 2.7.1 does not escape email message content before displaying it in the backend, allowing an unauthenticated attacker to perform XSS attacks against highly privileged users...
CVE-2023-5958
The POST SMTP Mailer WordPress plugin before 2.7.1 does not escape email message content before displaying it in the backend, allowing an unauthenticated attacker to perform XSS attacks against highly privileged users...
CVE-2023-5958
The CVE-2023-5958 entry concerns the WordPress Post SMTP Mailer plugin. Affected versions are prior to 2.7.1, where email message content is not escaped before being displayed in the backend. This allows an unauthenticated attacker to trigger cross-site scripting (XSS) attacks against highly priv...
CVE-2023-5958 POST SMTP Mailer < 2.7.1 - Unauthenticated Cross-site Scripting
The POST SMTP Mailer WordPress plugin before 2.7.1 does not escape email message content before displaying it in the backend, allowing an unauthenticated attacker to perform XSS attacks against highly privileged users...