400,000 WordPress Sites Affected by Account Takeover Vulnerability in Post SMTP WordPress Plugin

November 3, 2025 Yanac

On October 11th, 2025, we received a submission for an Account Takeover via Email Log Disclosure vulnerability in Post SMTP, a WordPress plugin with more than 400,000 active installations.
The post 400,000 WordPress Sites Affected by Account Takeover Vulnerability in Post SMTP WordPress Plugin appeared first on Wordfence.WordfenceRead More