[WordPress SMTP Plugin] CVE-2023-6875 + PoC
by who - Sunday January 14, 2024 at 05:40 PM
Who are You
MVP
Posts: 43
Threads: 19
Joined: Nov 2023
Reputation: 61

#1
01-14-2024, 05:40 PM
This vulnerability makes it possible for unauthenticated threat actors to reset the API key used to authenticate to the mailer and view logs, including password reset emails on WordPress sites that use this plugin. We also received another submission shortly after for an Unauthenticated Stored Cross-Site Scripting vulnerability in POST SMTP Mailer plugin from another researcher. This vulnerability enables threat actors to inject malicious web scripts into pages.

Blog:
https://www.wordfence.com/blog/2024/01/t...ss-plugin/

PoC:
Hidden Content
You must register or login to view this content.
⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐
⭐ ⭐ ⭐ ⭐ ⭐Sharing is Caring⭐ ⭐ ⭐ ⭐ ⭐
⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐
Reply
Elite User

Posts: 122
Threads: 19
Joined: Sep 2023
Reputation: -381

#2
01-14-2024, 06:58 PM
I posted a video about this
Reply
Who are You
MVP
Posts: 43
Threads: 19
Joined: Nov 2023
Reputation: 61

#3
01-15-2024, 12:20 PM
(01-14-2024, 06:58 PM)zinzeur Wrote: I posted a video about this

put it here
⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐
⭐ ⭐ ⭐ ⭐ ⭐Sharing is Caring⭐ ⭐ ⭐ ⭐ ⭐
⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐ ⭐
Reply
Banned

Posts: 29
Threads: 0
Joined: Sep 2023
Reputation: 0

#4
02-24-2024, 09:52 PM
Nice sharing. Im gonna check it out!
This forum account is currently banned. Ban Length: (Permanent)
Ban Reason: Leeching | http://breachddyfwvcp4kzccos5oxtdbssmfbp...an-Appeals if you feel this is incorrect.
Reply
Advanced User

Posts: 89
Threads: 30
Joined: Aug 2023
Reputation: 0

#5
02-29-2024, 12:55 PM
Thanks for sharing
Website
Reply
Breached
Member
Posts: 9
Threads: 0
Joined: Feb 2024
Reputation: 0

#6
02-29-2024, 09:47 PM
(01-14-2024, 06:58 PM)zinzeur Wrote: I posted a video about this

i have a question... is there any way for us to discover wp websites that have that smtp mailer plugin installed.
Reply
Breached
Member
Posts: 8
Threads: 0
Joined: Mar 2024
Reputation: 0

#7
03-22-2024, 10:24 PM
Where I can check video?
Reply
GOOD MAN
God
Posts: 155
Threads: 27
Joined: Nov 2023
Reputation: 190

#8
06-16-2024, 08:57 AM
nice share, who ever used it there?
Reply
Breached
Member
Posts: 23
Threads: 0
Joined: Aug 2024
Reputation: 0

#9
08-29-2024, 04:33 PM
(01-14-2024, 05:40 PM)who Wrote: This vulnerability makes it possible for unauthenticated threat actors to reset the API key used to authenticate to the mailer and view logs, including password reset emails on WordPress sites that use this plugin. We also received another submission shortly after for an Unauthenticated Stored Cross-Site Scripting vulnerability in POST SMTP Mailer plugin from another researcher. This vulnerability enables threat actors to inject malicious web scripts into pages.

Blog:
https://www.wordfence.com/blog/2024/01/t...ss-plugin/

PoC:

thks very much i will use a lot
Reply
Banned

Posts: 10
Threads: 2
Joined: Jan 2024
Reputation: 0

#10
09-09-2024, 10:31 AM
mega share or leav the marjet
This forum account is currently banned. Ban Length: (Permanent)
Ban Reason: Fabricated evidence | Retarded Monkey
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  New Zer0 Day Wordpress A3g00n 78 2,637 5 hours ago
Last Post: BugSearcher
  new wordpress website takeover vuln (video + poc ) zinzeur 313 27,277 03-28-2026, 02:43 AM
Last Post: toshi99
  [POC] Google OAuth "MultiLogin" endpoint 0-day Farfallaiero 106 13,201 02-10-2026, 03:34 PM
Last Post: birhikayemvar
  Cool Remote Patching ETW/Amsi PoC pepeloco 6 2,092 02-08-2026, 07:58 AM
Last Post: zeroday99
  CVE-2025-40554 - SolarWinds Web Help Desk Auth Bypass & RCE PoC miyako 3 73 02-07-2026, 03:32 PM
Last Post: cysc



 Users browsing this thread: