CVE-2017-18603

The postman-smtp plugin through 2017-10-04 for WordPress has XSS via the wp-admin/tools.php?page=postmanemaillog page parameter...

EUVD-2017-9716

Malware in sbrugna...

CVE-2023-3178

The POST SMTP Mailer WordPress plugin before 2.5.7 does not have proper CSRF checks in some AJAX actions, which could allow attackers to make logged in users with the managepostmansmtp capability delete arbitrary logs via a CSRF attack...

WordPress postman-smtp plugin cross-site scripting vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. postman-smtp is an email plugin used in it. A cross-site scripting vulnerability exists in the WordPress postman-smtp plugin. An...

CVE-2017-18603

The postman-smtp plugin through 2017-10-04 for WordPress has XSS via the wp-admin/tools.php?page=postmanemaillog page parameter...

CVE-2017-18603

The postman-smtp plugin through 2017-10-04 for WordPress has XSS via the wp-admin/tools.php?page=postmanemaillog page parameter...

Design/Logic Flaw

The postman-smtp plugin through 2017-10-04 for WordPress has XSS via the wp-admin/tools.php?page=postmanemaillog page parameter...

CVE-2017-18603

The CVE-2017-18603 issue is a confirmed XSS in the WordPress Postman SMTP plugin (up to 2017-10-04) affecting the wp-admin/tools.php?page=postman_email_log parameter. Connected sources (Red Hat, CNVD, NVD, CVE listings, and WPVulnDB) consistently describe an XSS vulnerability in this plugin. No r...

CVE-2017-18603

The postman-smtp plugin through 2017-10-04 for WordPress has XSS via the wp-admin/tools.php?page=postmanemaillog page parameter...

Postman SMTP Mailer/Email Log - Cross-Site Scripting (XSS)

The postman-smtp WordPress plugin was affected by a Cross-Site Scripting XSS security vulnerability...