SMTP for Amazon SES – YaySMTP

CVEs (2)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2025-3434	YaySMTP SMTP for Amazon SES – YaySMTP	Hig	0.40	7.2	0.00		Apr 11, 2025	The SMTP for Amazon SES – YaySMTP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Email Logs in all versions up to, and including, 1.8 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to…
CVE-2025-0957	YaySMTP SMTP for Amazon SES – YaySMTP	Hig	0.40	7.2	0.00		Feb 22, 2025	The SMTP for Amazon SES – YaySMTP plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 1.7.1 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web…

CVE-2025-3434HigApr 11, 2025
YaySMTP
SMTP for Amazon SES – YaySMTP
risk 0.40cvss 7.2epss 0.00
The SMTP for Amazon SES – YaySMTP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Email Logs in all versions up to, and including, 1.8 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to…
CVE-2025-0957HigFeb 22, 2025
YaySMTP
SMTP for Amazon SES – YaySMTP
risk 0.40cvss 7.2epss 0.00
The SMTP for Amazon SES – YaySMTP plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 1.7.1 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web…