cleantalk
Vulnerabilities and Security Researches

Emails Catch All, CVE-2025-60041

CVE, Research URL

CVE-2025-60041

Home page URL

Security reports for Emails Catch All

Application

Emails Catch All

Published on
Oct 22, 2025
Research Description
Authentication Bypass Using an Alternate Path or Channel vulnerability in Iulia Cazan Emails Catch All emails-catch-all allows Password Recovery Exploitation.This issue affects Emails Catch All: from n/a through <= 3.5.3.
Affected versions
max 3.5.4.
Status
vulnerable
Previous vulnerability researches
Post Grid for Elementor &amp; Product Grid | PowerGrids (513b8cac04964f7c742c50353b32f41d519b21a5) , Jun 07, 2024
New vulnerability
Backup and Move Plugin (CVE-2025-53246) , Nov 11, 2025
SEO Pyramid (CVE-2025-53427) , Nov 11, 2025
ViaAds (CVE-2025-12070) , Nov 11, 2025
WP Guppy Lite &#8211; A live chat plugin for WordPress (CVE-2025-49910) , Nov 11, 2025
Email Template Customizer for WooCommerce (CVE-2025-64200) , Nov 11, 2025