VYPR

Creative Mail By Constant Contact

by WordPress

CVEs (1)

  • CVE-2026-3985HigMay 20, 2026
    risk 0.49cvss 7.5epss 0.00

    The Creative Mail – Easier WordPress & WooCommerce Email Marketing plugin for WordPress is vulnerable to SQL Injection via the 'checkout_uuid' parameter in all versions up to, and including, 1.6.9. This is due to insufficient escaping on the user supplied parameter and lack of…