Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/06/08 1:19 p.m.6 views

CVE-2025-28974

Cross-Site Request Forgery CSRF vulnerability in mail250 Free WP Mail SMTP free-wp-mail-smtp allows Stored XSS.This issue affects Free WP Mail SMTP: from n/a through = 1.0...

7.1CVSS5.9AI score0.00135EPSS
Exploits0References1
NVD
NVD
added 2025/06/06 1:15 p.m.7 views

CVE-2025-28974

Cross-Site Request Forgery CSRF vulnerability in mail250 Free WP Mail SMTP free-wp-mail-smtp allows Stored XSS.This issue affects Free WP Mail SMTP: from n/a through = 1.0...

7.1CVSS0.00135EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/06 12:54 p.m.19 views

CVE-2025-28974 WordPress Free WP Mail SMTP plugin <= 1.0 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in mail250 Free WP Mail SMTP free-wp-mail-smtp allows Stored XSS.This issue affects Free WP Mail SMTP: from n/a through = 1.0...

7.1CVSS0.00135EPSS
Exploits0References1
CVE
CVE
added 2025/06/06 12:54 p.m.38 views

CVE-2025-28974

CVE-2025-28974 is a CSRF-to-Stored XSS vulnerability in the Free WP Mail SMTP (mail250) WordPress plugin. The issue affects Free WP Mail SMTP versions from n/a through 1.0, with a CVSSv3.1 base score of 7.1 (High). The connected documentation confirms the vulnerability class (CSRF leading to Stor...

7.1CVSS5.9AI score0.00135EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/06/05 1:33 a.m.8 views

WordPress Free WP Mail SMTP plugin <= 1.0 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability

Cross Site Request Forgery CSRF to Stored XSS vulnerability discovered by Nguyen Xuan Chien in WordPress Plugin Free WP Mail SMTP versions = 1.0...

7.1CVSS6AI score0.00135EPSS
Exploits0Affected Software1
Rows per page
Query Builder