Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin Post SMTP-WP SMTP with Email Logs Mobile App for Failure Alerts-Any SMTP Plus Gmail SMTP Office 365 Brevo Mailgun Amazon SES Postmark Multiple Cross-Site Request Forgery Vulnerabilities - CVE-2023-3178 - Vulnerability Database
WP Plugin Post Smtp

WordPress Plugin Post SMTP-WP SMTP with Email Logs Mobile App for Failure Alerts-Any SMTP Plus Gmail SMTP Office 365 Brevo Mailgun Amazon SES Postmark Multiple Cross-Site Request Forgery Vulnerabilities - CVE-2023-3178

High
Reference: CVE-2023-3178
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2023-3178
Title: WordPress Plugin Post SMTP-WP SMTP with Email Logs Mobile App for Failure Alerts-Any SMTP Plus Gmail SMTP Office 365 Brevo Mailgun Amazon SES Postmark Multiple Cross-Site Request Forgery Vulnerabilities
Overview:

WordPress Plugin Post SMTP-WP SMTP with Email Logs Mobile App for Failure Alerts-Any SMTP Plus Gmail SMTP Office 365 Brevo Mailgun Amazon SES Postmark is prone to multiple cross-site request forgery vulnerabilities. Exploiting these issues may allow a remote attacker to perform certain administrative actions and gain unauthorized access to the affected application other attacks are also possible. WordPress Plugin Post SMTP-WP SMTP with Email Logs Mobile App for Failure Alerts-Any SMTP Plus Gmail SMTP Office 365 Brevo Mailgun Amazon SES Postmark version 2.5.6 is vulnerable prior versions may also be affected.