Product
wpvibes wp mail log
8 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2023-51410
CVE-2023-5674
CVE-2023-5673
CVE-2023-5672
CVE-2023-5645
CVE-2023-5644
CVE-2023-3088
CVE-2022-45807
<= 1.1.2
Unrestricted Upload of File with Dangerous Type vulnerability in WPVibes WP Mail Log.This issue affects WP Mail Log: from n/a thro
< 1.1.3
The WP Mail Log WordPress plugin before 1.1.3 does not properly sanitise and escape a parameter before using it in a SQL statement
< 1.1.3
The WP Mail Log WordPress plugin before 1.1.3 does not properly validate file extensions uploading files to attach to emails, allo
< 1.1.3
The WP Mail Log WordPress plugin before 1.1.3 does not properly validate file path parameters when attaching files to emails, lead
< 1.1.3
The WP Mail Log WordPress plugin before 1.1.3 does not properly sanitise and escape a parameter before using it in a SQL statement
< 1.1.3
The WP Mail Log WordPress plugin before 1.1.3 does not correctly authorize its REST API endpoints, allowing users with the Contrib
< 1.1.2
The WP Mail Log plugin for WordPress is vulnerable to Stored Cross-Site Scripting via email contents in versions up to, and includ
< 1.0.2
Cross-Site Request Forgery (CSRF) in WPVibes WP Mail Log plugin <= 1.0.1 versions.