cleantalk
Vulnerabilities and Security Researches

Easy WP SMTP by SendLayer – WordPress SMTP and Email Log Plugin, CVE-2022-3334

CVE, Research URL

CVE-2022-3334

Home page URL

Security reports for Easy WP SMTP by SendLayer – WordPress SMTP and Email Log Plugin

Application

Easy WP SMTP by SendLayer – WordPress SMTP and Email Log Plugin

Published on
Oct 31, 2022
Research Description
The Easy WP SMTP WordPress plugin before 1.5.0 unserialises the content of an imported file, which could lead to PHP object injection issue when an admin import (intentionally or not) a malicious file and a suitable gadget chain is present on the blog.
Affected versions
Min -, max 1.5.0.
Status
vulnerable
Previous vulnerability researches
Easy WP SMTP by SendLayer – WordPress SMTP and Email Log Plugin (CVE-2022-42699) , Jun 07, 2024
Easy WP SMTP by SendLayer – WordPress SMTP and Email Log Plugin (CVE-2019-25141) , Jun 07, 2024
Easy WP SMTP by SendLayer – WordPress SMTP and Email Log Plugin (CVE-2020-35234) , Jun 07, 2024
Easy WP SMTP by SendLayer – WordPress SMTP and Email Log Plugin (CVE-2017-7723) , Jun 07, 2024
Easy WP SMTP by SendLayer – WordPress SMTP and Email Log Plugin (CVE-2022-3334) , Jun 07, 2024
New vulnerability
Uncanny Automator – Automate everything with the #1 automation, integration & webhooks plugin (CVE-2025-58193) , Aug 28, 2025
Podlove Podcast Publisher (CVE-2025-58204) , Aug 28, 2025
WordPress HTML (CVE-2025-48315) , Aug 28, 2025
RingCentral Communications Plugin – FREE (CVE-2025-7955) , Aug 28, 2025
Unlimited Elements For Elementor (Free Widgets, Addons, Templates) (CVE-2025-8603) , Aug 28, 2025