WordPress SMTP Plugin Security Update Advisory (CVE-2024-9511)

Nov 26 2024

Overview

An update has been released to address vulnerabilities in WordPress SMTP Plugin. Users of the affected versions are advised to update to the latest version.

Affected Products

CVE-2024-9511

FluentSMTP versions: ~ 2.2.82 (inclusive)

Resolved Vulnerabilities

PHP object injection vulnerability via untrusted input deserialization in the formatResult function (CVE-2024-9511)

Vulnerability Patches

Vulnerability Patches have been made available in the latest updates. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2024-9511

FluentSMTP version: 2.2.83

Referenced Sites

[1] CVE-2024-9511 Detail

https://nvd.nist.gov/vuln/detail/CVE-2024-9511

[2] FluentSMTP – WP SMTP Plugin with Amazon SES, SendGrid, MailGun, Postmark, Google and Any SMTP Provider <= 2.2.82 – Unauthenticated PHP Object Injection

https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/fluent-smtp/fluentsmtp-wp-smtp-plugin-with-amazon-ses-sendgrid-mailgun-postmark-google-and-any-smtp-provider-2282-unauthenticated-php-object-injection

WordPress SMTP Plugin Security Update Advisory (CVE-2024-9511)

NVIDIA Product Security Update Advisory

Dell Product Security Update Advisory

Tags:

NVIDIA Product Security Update Advisory

Dell Product Security Update Advisory