Wp-email Project - Wp-email CVE

Filtered by vendor Wp-email Project Subscribe

Filtered by product Wp-email

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2022-1630	1 Wp-email Project	1 Wp-email	2022-06-28	4.3 MEDIUM	6.5 MEDIUM
The WP-EMail WordPress plugin before 2.69.0 does not protect its log deletion functionality with nonce checks, allowing attacker to make a logged in admin delete logs via a CSRF attack

Vulnerabilities (CVE)