CVE-2023-50844

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in James Ward Mail logging – WP Mail Catcher.This issue affects Mail logging – WP Mail Catcher: from n/a through 2.1.3...

PT-2023-22988 · WordPress · Wp Mail Catcher

Name of the Vulnerable Software and Affected Versions: WP Mail Catcher plugin for WordPress versions up to, and including, 2.1.2 Description: The issue is related to Stored Cross-Site Scripting via an email subject due to insufficient input sanitization and output escaping. This allows...