VYPR

Email Artillery (MASS EMAIL)

by WordPress

CVEs (1)

  • CVE-2021-24490MedSep 13, 2021
    risk 0.44cvss 6.8epss 0.01

    The Email Artillery (MASS EMAIL) WordPress plugin through 4.1 does not properly check the uploaded files from the Import Emails feature, allowing arbitrary files to be uploaded. Furthermore, the plugin is also lacking any CSRF check, allowing such issue to be exploited via a…