WordPress Post SMTP Mailer Plugin Security Update Advisory (CVE-2023-6875)

Jan 24 2024

Overview

An update has been made available to fix vulnerabilities in WordPress Post SMTP Mailer (an email sending and management plugin). Users of affected versions are advised to update to the latest version.

Affected Products

All versions of Post SMTP Mailer up to 2.8.7

Resolved Vulnerabilities

Authorization bypass via the Connect-app API inPost SMTP Mailer (CVE-2023-6875)

Vulnerability Patches

Please visit the referenced site to update to the latest version.

Referenced Sites

[1] POST SMTP – The #1 WordPress SMTP Plugin with Advanced Email Logging and Delivery Failure Notifications

POST SMTP – The #1 WordPress SMTP Plugin with Advanced Email Logging and Delivery Failure Notifications – WordPress plugin | WordPress.org

[2] WordPress Patches Multiple Vulnerabilities in POST SMTP Mailer Plugin (CVE-2023-6875 & CVE-2023-7027)

WordPress Patches Multiple Vulnerabilities in POST SMTP Mailer Plugin (CVE-2023-6875 & CVE-2023-7027) – Qualys ThreatPROTECT

WordPress Post SMTP Mailer Plugin Security Update Advisory (CVE-2023-6875)

Overview

Affected Products

Resolved Vulnerabilities

Vulnerability Patches

Referenced Sites

MLflow and ClearML Platform Security Update Advisories (CVE-2023-6831, CVE-2023-6977, CVE-2023-6709, CVE-2023-6778)

GitLab CE/EE Product Security Update Advisory (CVE-2024-0402, CVE-2023-6159, CVE-2023-5933, CVE-2023-5612, CVE-2024-0456)

Overview

Affected Products

Resolved Vulnerabilities

Vulnerability Patches

Referenced Sites

Tags:

MLflow and ClearML Platform Security Update Advisories (CVE-2023-6831, CVE-2023-6977, CVE-2023-6709, CVE-2023-6778)

GitLab CE/EE Product Security Update Advisory (CVE-2024-0402, CVE-2023-6159, CVE-2023-5933, CVE-2023-5612, CVE-2024-0456)