Wp Mail Log

CVEs (3)

CVE	Sev	Risk	CVSS	EPSS	Published	Description
CVE-2023-51410	Cri	0.64	9.9	0.01	Dec 29, 2023	Unrestricted Upload of File with Dangerous Type vulnerability in WPVibes WP Mail Log.This issue affects WP Mail Log: from n/a through 1.1.2.
CVE-2023-3088	Hig	0.47	7.2	0.01	Jul 12, 2023	The WP Mail Log plugin for WordPress is vulnerable to Stored Cross-Site Scripting via email contents in versions up to, and including, 1.1.1 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
CVE-2022-45807	Med	0.35	5.4	0.00	Feb 2, 2023	Cross-Site Request Forgery (CSRF) in WPVibes WP Mail Log plugin <= 1.0.1 versions.

CVE-2023-51410CriDec 29, 2023
risk 0.64cvss 9.9epss 0.01
Unrestricted Upload of File with Dangerous Type vulnerability in WPVibes WP Mail Log.This issue affects WP Mail Log: from n/a through 1.1.2.
CVE-2023-3088HigJul 12, 2023
risk 0.47cvss 7.2epss 0.01
The WP Mail Log plugin for WordPress is vulnerable to Stored Cross-Site Scripting via email contents in versions up to, and including, 1.1.1 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
CVE-2022-45807MedFeb 2, 2023
risk 0.35cvss 5.4epss 0.00
Cross-Site Request Forgery (CSRF) in WPVibes WP Mail Log plugin <= 1.0.1 versions.