Browse all 3 CVE security advisories affecting smtp2go. AI-powered Chinese analysis, POCs, and references for each vulnerability.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-7621 | SMTP2GO for WordPress <= 1.16.0 - Missing Authorization to Authenticated (Subscriber+) Log Read/Truncate — SMTP2GO for WordPress – Email Made EasyCWE-862 | 4.3 | Medium | 2026-05-28 |
| CVE-2025-54011 | WordPress SMTP2GO plugin <= 1.12.1 - Broken Access Control Vulnerability — SMTP2GOCWE-862 | 4.3 | Medium | 2025-07-16 |
| CVE-2023-28496 | WordPress SMTP2GO Plugin <= 1.4.2 is vulnerable to Cross Site Scripting (XSS) — SMTP2GO – Email Made EasyCWE-79 | 5.9 | Medium | 2023-06-22 |
This page lists every published CVE security advisory associated with smtp2go. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.