CVE-2025-6993 | Ultimate WP Mail Plugin up to 1.0.17/1.3.6 on WordPress AJAX get_email_log_details authorization

July 15, 2025 Yanac

A vulnerability, which was classified as critical, was found in Ultimate WP Mail Plugin up to 1.0.17/1.3.6 on WordPress. Affected is the function get_email_log_details of the component AJAX Handler. The manipulation leads to missing authorization.

This vulnerability is traded as CVE-2025-6993. It is possible to launch the attack remotely. There is no exploit available.VulDB Recent EntriesRead More