Filter
-Infinity
0

Post SMTPPost SMTP <= 3.1.2 - Authenticated (Administrator+) SQL Injection via columns Parameter

First published (updated )

GiveWPWPExperts Square For GiveWP <= 1.3.1 - Authenticated (Subscriber+) SQL Injection

First published (updated )

Post SMTPPost SMTP <= 3.0.2 - Unauthenticated Stored Cross-Site Scripting

7.2
First published (updated )

WP Multi Store LocatorWordPress WP Multi Store Locator Plugin <= 2.4.7 - Cross Site Scripting (XSS) vulnerability

7.1
EPSS
0.05%
First published (updated )

WPExperts User ManagementWordPress User Management plugin <= 1.2 - Privilege Escalation vulnerability

8.8
EPSS
0.04%
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

WP Multi Store LocatorWP Multi Store Locator <= 2.4.1 - Authenticated (Contributor+) Stored Cross-Site Scripting

First published (updated )

Wpexperts Post SMTPWordPress Post SMTP plugin <= 2.9.9 - SQL Injection vulnerability

7.6
First published (updated )

Wp Secure MaintenanceWP Secure Maintenance < 1.7 - Admin+ Stored XSS

First published (updated )

Wpexperts License Manager For Woocommerce WordpressLicense Manager for WooCommerce <= 3.0.7 - Improper Authorization to Authenticated(Contributor+) Sensitive Information Exposure

First published (updated )

Post SMTPWordPress POST SMTP Mailer plugin <= 2.8.6 - Broken Access Control on API vulnerability

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

WPExperts Wholesale For WooCommerceWordPress Wholesale For WooCommerce plugin <= 2.3.1 - Unauthenticated Arbitrary Post/Page vulnerability

7.5
EPSS
0.04%
First published (updated )

WPExperts Wholesale For WooCommerceWordPress Wholesale For WooCommerce plugin <= 2.3.0 - Unauthenticated Sensitive Data Exposure vulnerability

EPSS
0.04%
First published (updated )

Post SMTPWordPress POST SMTP Mailer plugin <= 2.8.6 - Reflected Cross Site Scripting (XSS) vulnerability

7.1
EPSS
0.04%
First published (updated )

Wpexpertsio WC Shop SyncWordPress APIExperts Square for WooCommerce plugin <= 4.2.9 - Cross Site Scripting (XSS) vulnerability

7.1
EPSS
0.04%
First published (updated )

Wpexperts Password ProtectedXSS

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Wpexperts Post SMTPPOST SMTP Mailer < 2.5.7 - Arbitrary Log Deletion via CSRF

First published (updated )

Post SMTPPost SMTP < 2.8.7 - Admin+ SQL Injection

7.2
EPSS
0.05%
First published (updated )

Post SMTPThe POST SMTP Mailer – Email log, Delivery Failure Notifications and Best Mail SMTP for WordPress pl…

EPSS
4.26%
First published (updated )

Wpexperts Post SMTPPost SMTP < 2.8.7 - Reflected Cross-Site Scripting

EPSS
0.05%
First published (updated )

Wpexperts Post SMTPXSS

7.2
EPSS
0.07%
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Wpexperts Post SMTPXSS

EPSS
0.09%
First published (updated )

WordPress New User ApproveWordPress New User Approve Plugin <= 2.5.1 is vulnerable to Cross Site Request Forgery (CSRF)

8.8
First published (updated )

Wpexperts Rocket Maintenance Mode & Coming Soon PageWordPress Rocket Maintenance Mode & Coming Soon Page Plugin <= 4.3 is vulnerable to Cross Site Scripting (XSS)

First published (updated )

Wpexperts License Manager For WoocommerceWordPress License Manager for WooCommerce Plugin <= 2.2.10 is vulnerable to SQL Injection

7.6
First published (updated )

Post SMTPPOST SMTP Mailer < 2.7.1 - Unauthenticated Cross-site Scripting

EPSS
0.10%
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Wpexperts Email Templates Customizer And DesignerWordPress Email Templates Plugin <= 1.4.2 is vulnerable to Cross Site Request Forgery (CSRF)

8.8
First published (updated )

CVE-2023-4798User Avatar - Reloaded < 1.2.2 - Contributor+ Stored XSS

First published (updated )

Post SMTPPOST SMTP Mailer < 2.5.7 - Account Takeover via CSRF

8.8
First published (updated )

Wpexperts WP PDF GeneratorWordPress WP PDF Generator Plugin <= 1.2.2 is vulnerable to Cross Site Request Forgery (CSRF)

8.8
First published (updated )

Post SMTPCSRF

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203