Vulnerabilities and security researches forgosmtp gosmtp

Feb 17, 2026

PSC, Research URL: PSC-2026-64610
Home page URL: Security reports for GoSMTP – SMTP for WordPress
Application: GoSMTP – SMTP for WordPress
Date: Feb 17, 2026
Research Description: Email delivery is business critical, but email sending plugins also sit on a sensitive boundary where they handle SMTP credentials, API keys, admin side settings, and in some cases email logs that can contain personal data. GoSMTP version 1.1.8 has successfully completed the CleanTalk Plugin Security Certification program and received PSC-2026-64610, confirming that the plugin was assessed with a strong focus on secure coding practices and common real world WordPress attack paths.
Affected versions: Min 1.1.8, max 1.1.8.
Status: SAFE & CERTIFIED