2 matches found
Post SMTP <= 3.6.0 - Email Log Disclosure
Post SMTP WordPress plugin = 3.6.0 contains an unauthorized data access vulnerability caused by missing capability check in construct function, letting unauthenticated attackers read arbitrary logged emails, exploit requires no authentication. id: CVE-2025-11833 info: name: Post SMTP = 3.6.0 -...
CVE-2025-11833
creationtimestamp| type| source ---|---|--- 2025-11-01 10:18:49+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3m4krbhbs4q2s 2025-11-01 11:54:35+00:00| seen| https://bsky.app/profile/securestep9.bsky.social/post/3m4kwmop7b22w 2025-11-02 12:56:10+00:00| seen|...