Multiple Vulnerabilities Patches in POST SMTP Mailer WordPress Plugin

Bijay Pokharel, January 11, 2024 0 1 min read

Cybersecurity researchers Ulyses Saicha and Sean Murphy have discovered the authorization Bypass vulnerability in POST SMTP Mailer, a WordPress plugin with over 300,000+ active installations.

This vulnerability makes it possible for unauthenticated threat actors to reset the API key used to authenticate to the mailer and view logs, including password reset emails on WordPress sites that use this plugin.

❤️

If this article helped you, please consider supporting our work. Every small contribution keeps Abijita.com independent and running.

Buy ExpressVPN with PayPal or Credit Card

READ

UK Visa Portal Data Leak Exposes Passports And Selfie Photos Of Applicants

IT NEWS & UPDATES

US SEC Greenlights Bitcoin ETFs In Watershed for Crypto Market

IT NEWS & UPDATES

OpenAI Launches GPT Store for ChatGPT Plus, Team, and Enterprise Users

Bijay Pokharel

Bijay Pokharel is the Founder and Editor-in-Chief of Abijita.com and a freelance technology writer covering the tech industry since 2017. He specializes in cybersecurity, digital privacy, malware, vulnerabilities, and online safety, with a strong interest in internet protection and women’s online security. A dedicated tech enthusiast and continuous learner, Bijay approaches his professional work with clarity, rational thinking, and a calm, solution-oriented mindset.

SIGN UP FOR NEWSLETTERS

Please confirm your email address.

Sign up for cybersecurity newsletter and get latest news updates delivered straight to your inbox. You are also consenting to our Privacy Policy and Terms of Use.

Subscribe

Cybersecurity Newsletter

You have Successfully Subscribed!

SIGN UP FOR NEWSLETTERS

Please confirm your email address.

Subscribe

Cybersecurity Newsletter

You have Successfully Subscribed!

Multiple Vulnerabilities Patches in POST SMTP Mailer WordPress Plugin

Bijay Pokharel

Related posts

IBM : Cyber-Criminals Are Targeting The COVID-19 Vaccine Cold Chain

Hackers Spreading Powerful Malware Via Omicron News Emails

Spain Busts €19M Crypto Scam That Used Deepfake Ads and AI Tricks

Dell API Abused to Steal 49 Million Customer Records in Data Breach

Malicious SDK Found in Android and iOS Apps Stealing Crypto Wallet Recovery Phrases

Google Denies Massive Gmail Data Breach After False Reports Spread Online

Leave a Reply Cancel reply

SIGN UP FOR NEWSLETTERS

Please confirm your email address.