cleantalk
Vulnerabilities and Security Researches

Email Marketing, Email Automation & Newsletter for WordPress & WooCommerce – Mail Mint, CVE-2025-59570

CVE, Research URL

CVE-2025-59570

Home page URL

Security reports for Email Marketing, Email Automation & Newsletter for WordPress & WooCommerce – Mail Mint

Application

Email Marketing, Email Automation & Newsletter for WordPress & WooCommerce – Mail Mint

Published on
Sep 23, 2025
Research Description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WPFunnels Mail Mint mail-mint allows SQL Injection.This issue affects Mail Mint: from n/a through <= 1.18.6.
Affected versions
max 1.18.7.
Status
vulnerable
Previous vulnerability researches
Email Inquiry &amp; Cart Options for WooCommerce (CVE-2026-24526) , Jan 27, 2026
New vulnerability
Zoho Flow (CVE-2025-8479) , Apr 25, 2026
Zoho Flow (CVE-2025-59568) , Apr 25, 2026
Sheets to WP Table Live Sync &#8211; WordPress Table Plugin with Google Sheets Integration (CVE-2025-9543) , Apr 25, 2026
GeoDirectory &#8211; WordPress Business Directory Plugin, or Classified Directory (CVE-2025-6200) , Apr 25, 2026
WPeMatico RSS Feed Fetcher (CVE-2025-57937) , Apr 25, 2026