cleantalk
Vulnerabilities and Security Researches

SMTP Mailing Queue, 966e6341b0fb8540929f2b28c0340b857e278ef6

CVE, Research URL

966e6341b0fb8540929f2b28c0340b857e278ef6

Home page URL

Security reports for SMTP Mailing Queue

Application

SMTP Mailing Queue

Published on
Apr 03, 2023
Research Description
SMTP Mailing Queue [smtp-mailing-queue] < 2.0.0 (closed) WordPress SMTP Mailing Queue Plugin <= 1.4.7 is vulnerable to Cross Site Scripting (XSS) Update the WordPress SMTP Mailing Queue plugin to the latest available version (at least 2.0.0). WordFence discovered and reported this Cross Site Scripting (XSS) vulnerability in WordPress SMTP Mailing Queue Plugin. This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site. This vulnerability has been fixed in version 2.0.0.
Affected versions
max 2.0.0.
Status
vulnerable
Previous vulnerability researches
SMTP Mailing Queue (966e6341b0fb8540929f2b28c0340b857e278ef6) , Jun 16, 2026
SMTP Mailing Queue (CVE-2023-1090) , Jun 07, 2024
SMTP Mailing Queue (50102fa9853d89dbd009f668642c536bd89820d6) , Jun 07, 2024
New vulnerability
leenk.me (753d31765913b4d2dbb8af0a5512e5f1f8c70c61) , Jun 16, 2026
Social Hashtags (5abd4657-8a58-4d97-b8cb-b67235ab5b8a) , Jun 16, 2026
Social Hashtags (1965c7b04565befbb11c28b56cb6922733a47b03) , Jun 16, 2026
Social Hashtags (a7cf6766582e354e702766a86f85716127d19bdc) , Jun 16, 2026
Simple Calendar &#8211; Google Calendar Plugin (e98a6264-9c5a-417f-b2f8-bd0017b411a0) , Jun 16, 2026