CVE-2026-6963 WP Mail Gateway <= 1.8 - Missing Authorization to Authenticated (Subscriber+) SMTP Configuration Modification via 'wmg_save_provider_config' AJAX Action

The WP Mail Gateway plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the wmgsaveproviderconfig AJAX action in all versions up to, and including, 1.8. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update...

CVE-2026-6963 WP Mail Gateway <= 1.8 - Missing Authorization to Authenticated (Subscriber+) SMTP Configuration Modification via 'wmg_save_provider_config' AJAX Action

The WP Mail Gateway plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the wmgsaveproviderconfig AJAX action in all versions up to, and including, 1.8. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update...

CVE-2026-2471 WP Mail Logging <= 1.15.0 - Unauthenticated PHP Object Injection via Email Log Message Field

The WP Mail Logging plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.15.0 via deserialization of untrusted input from the email log message field. This is due to the BaseModel class constructor calling maybeunserialize on all properties retrieved...

EUVD-2017-15013

Malware in sbrugna...

EUVD-2023-56131

Malicious code in bioql PyPI...

EUVD-2024-42375

Malicious code in bioql PyPI...

EUVD-2023-43771

Malicious code in bioql PyPI...

EUVD-2025-30772

Malicious code in bioql PyPI...

EUVD-2025-13851

Malicious code in bioql PyPI...

EUVD-2024-29921

Malicious code in bioql PyPI...

EUVD-2023-55577

Malicious code in bioql PyPI...

EUVD-2025-17174

Malicious code in bioql PyPI...

EUVD-2022-48661

Malicious code in bioql PyPI...

EUVD-2025-17273

Malicious code in bioql PyPI...

EUVD-2025-10567

Malicious code in bioql PyPI...

EUVD-2025-17173

Malicious code in bioql PyPI...

EUVD-2025-26955

Malicious code in bioql PyPI...

EUVD-2025-13832

Malicious code in bioql PyPI...

EUVD-2023-43891

Malicious code in bioql PyPI...

CVE-2025-53454

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rustaurius Ultimate WP Mail ultimate-wp-mail allows Stored XSS.This issue affects Ultimate WP Mail: from n/a through = 1.3.8...