Ultimate WP Mail

Rustaurius

Developer

1.3.10

Latest version

900

Installations

Oct 16, 2025

Last updated

WordPress Plugin

No VDP

Claim ownership

Report vulnerability

Vulnerabilities

Vulnerability history

1 present

5 fixed

2 Mitigation rules

Cross Site Scripting (XSS) Vulnerability
<= 1.3.8
Sep 22, 2025
WordPress Ultimate WP Mail plugin 1.0.17 - 1.3.6 - Missing Authorization to Authenticated (Contributor+) Privilege Escalation via get_email_log_details Function vulnerability
1.0.17 - 1.3.6
Jul 16, 2025
Account Takeover via Email Log Leak Vulnerability
<= 1.3.5
Jun 5, 2025
SQL Injection Vulnerability
<= 1.3.4
May 7, 2025
Cross Site Request Forgery (CSRF) Vulnerability
<= 1.3.4
May 7, 2025
Open Redirection vulnerability
<= 1.3.10
Apr 9, 2025