CVE-2015-9409
The alo-easymail plugin before 2.6.01 for WordPress has CSRF with resultant XSS in pages/alo-easymail-admin-options.php.
6.5CVSS
6.2AI Score
0.001EPSS