Vulnerabilities and Security Researches

Vulnerabilities and security researches forwp-mail wp-mail

Direction: ascending

Jun 07, 2024

WP Mail # CVE-2017-5942

CVE, Research URL: CVE-2017-5942
Home page URL: Security reports for WP Mail
Application: WP Mail
Date: Feb 10, 2017
Research Description: An issue was discovered in the WP Mail plugin before 1.2 for WordPress. The replyto parameter when composing a mail allows for a reflected XSS. This would allow you to execute JavaScript in the context of the user receiving the mail.
Affected versions: Min -, max -.
Status: vulnerable

Sep 07, 2025

WP Mail # CVE-2025-58822

CVE, Research URL: CVE-2025-58822
Home page URL: Security reports for WP Mail
Application: WP Mail
Date: Sep 05, 2025
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in mndpsingh287 WP Mail allows DOM-Based XSS. This issue affects WP Mail: from n/a through 1.3.
Affected versions: Min -, max -.
Status: vulnerable