Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 2:13 a.m.11 views

CVE-2023-7027

The POST SMTP Mailer – Email log, Delivery Failure Notifications and Best Mail SMTP for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘device’ header in all versions up to, and including, 2.8.7 due to insufficient input sanitization and output escaping. This...

7.2CVSS6AI score0.00941EPSS
Exploits2References1
Packet Storm
Packet Storm
added 2024/01/11 12:0 a.m.427 views

WordPress POST SMTP Mailer 2.8.7 Authorization Bypass / Cross Site Scripting

Vulnerability Summary from Wordfence Intelligence Description: POST SMTP Mailer – Email log, Delivery Failure Notifications and Best Mail SMTP for WordPress = 2.8.7 – Authorization Bypass via type connect-app API Affected Plugin: POST SMTP Mailer – Email log, Delivery Failure Notifications and Be...

9.8CVSS7.1AI score0.90339EPSS
Exploits7
NVD
NVD
added 2024/01/03 5:15 a.m.21 views

CVE-2023-7027

The POST SMTP Mailer – Email log, Delivery Failure Notifications and Best Mail SMTP for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘device’ header in all versions up to, and including, 2.8.7 due to insufficient input sanitization and output escaping. This...

7.2CVSS6.3AI score0.00941EPSS
Exploits2References5
CVE
CVE
added 2024/01/03 4:29 a.m.133 views

CVE-2023-7027

The CVE-2023-7027 vulnerability affects the WordPress Post SMTP Mailer plugin (WPExperts) for WordPress, with all versions up to 2.8.7 vulnerable to Stored Cross-Site Scripting via the device header due to insufficient input sanitization and output escaping. This permits unauthenticated attackers...

7.2CVSS6.6AI score0.00941EPSS
Exploits2References5Affected Software1
Patchstack
Patchstack
added 2024/01/03 12:0 a.m.15 views

WordPress Post SMTP Plugin <= 2.8.7 is vulnerable to Cross Site Scripting (XSS)

Software Post SMTP Type Plugin Vulnerable versions = 2.8.7 Fixed in 2.8.8 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-7027 Patch priority Medium CVSS severity Medium 7.1 Developer WPExperts PSID 7142ca21bf69 Credits Sean Murphy Required privilege...

7.2CVSS5.6AI score0.00941EPSS
Exploits2References3Affected Software1
Rows per page
Query Builder