VYPR

WP Email Debug

by WordPress

CVEs (1)

  • CVE-2025-5486CriJun 6, 2025
    risk 0.64cvss 9.8epss 0.00

    The WP Email Debug plugin for WordPress is vulnerable to privilege escalation due to a missing capability check on the WPMDBUG_handle_settings() function in versions 1.0 to 1.1.0. This makes it possible for unauthenticated attackers to enable debugging and send all emails to an…