Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
wpvulndbMarcin Węgłowski (AFINE Team)WPVDB-ID:22FA478D-E42E-488D-9B4B-A8720DEC7CEE
HistoryNov 06, 2023 - 12:00 a.m.

POST SMTP Mailer < 2.7.1 - Unauthenticated Cross-site Scripting

2023-11-0600:00:00
Marcin Węgłowski (AFINE Team)
wpscan.com
9
post smtp mailer
unauthenticated
cross-site scripting
vulnerability
xss attacks
email log

EPSS

0.001

Percentile

30.1%

JSON

Description The plugin does not escape email message content before displaying it in the backend, allowing an unauthenticated attacker to perform XSS attacks against highly privileged users.

PoC

1. Install Post SMTP in version <= 2.7.0 and configure it. 2. Send email using any contact form which uses ‘wp_mail’ function. Include the following payload in the message: 3. Visit /wp-admin/admin.php?page=postman_email_log (Post SMTP -> Email Log) 4. Click ‘View’ next to the first record. 5. The message is shown and JavaScript code is executed.

Related

cvelist 1
cve 1
openvas 1
prion 1
nvd 1
wpexploit 1
cvelist
cvelist
CVE-2023-5958 POST SMTP Mailer < 2.7.1 - Unauthenticated Cross-site Scripting
2023-11-27 16:22:03
cve
cve
CVE-2023-5958
2023-11-27 17:15:09
openvas
openvas
WordPress Post SMTP Mailer/Email Log Plugin < 2.7.1 XSS Vulnerability
2023-11-28 00:00:00
prion
prion
Design/Logic Flaw
2023-11-27 17:15:00
nvd
nvd
CVE-2023-5958
2023-11-27 17:15:09
wpexploit
wpexploit
POST SMTP Mailer < 2.7.1 - Unauthenticated Cross-site Scripting
2023-11-06 00:00:00

EPSS

0.001

Percentile

30.1%

JSON
Related for WPVDB-ID:22FA478D-E42E-488D-9B4B-A8720DEC7CEE
cvelist1cve1openvas1prion1nvd1wpexploit1