CVE-2019-25150 Information
Jun 08, 2023
cve
Description
The Email Templates plugin for WordPress is vulnerable to HTML Injection in versions up to and including 1.3. This makes it possible for attackers to present phishing forms or conduct cross-site request forgery attacks against site administrators.
Reference
https://blog.nintechnet.com/multiple-wordpress-plugins-vulnerable-to-html-injection/ https://www.wordfence.com/threat-intel/vulnerabilities/id/f5c449f1-4715-4033-b0a3-6a8ca968aabc?source=cve https://wordpress.org/plugins/email-templates/#developers
Share on: