VYPR
Vendor

Check & Log Email

Products
1
CVEs
2
Across products
2
Status
Private

Products

1

Recent CVEs

2
  • CVE-2024-0867HigMay 24, 2024
    risk 0.53cvss 8.1epss 0.01

    The Email Log plugin for WordPress is vulnerable to Unauthenticated Hook Injection in all versions up to, and including, 2.4.8 via the check_nonce function. This makes it possible for unauthenticated attackers to execute actions with hooks in WordPress under certain…

  • CVE-2026-5306MedApr 28, 2026
    risk 0.35cvss 5.4epss 0.00

    The Check & Log Email WordPress plugin before 2.0.13 does not properly handle email replacement, which could allow unauthenticated users to perform Stored XSS attacks when the email encoder setting is enabled