VYPR

Wp Mail

by Wp Mail Project

CVEs (1)

  • CVE-2017-5942MedFeb 10, 2017
    risk 0.40cvss 6.1epss 0.01

    An issue was discovered in the WP Mail plugin before 1.2 for WordPress. The replyto parameter when composing a mail allows for a reflected XSS. This would allow you to execute JavaScript in the context of the user receiving the mail.