cbcvebase.
CVE-2025-24000
published 2025-08-07

CVE-2025-24000: Authentication Bypass Using an Alternate Path or Channel vulnerability in Saad Iqbal Post SMTP post-smtp allows Authentication Bypass.This issue affects Post…

PriorityP181high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
ITWEXPLOITVulnCheck KEV
Exploited in the wild
EPSS
0.55%
41.6th percentile
Authentication Bypass Using an Alternate Path or Channel vulnerability in Saad Iqbal Post SMTP post-smtp allows Authentication Bypass.This issue affects Post SMTP: from n/a through <= 3.2.0.

Affected

1 ranges
VendorProductVersion rangeFixed in
saad_iqbalpost_smtp<= 3.2.0

Detection & IOCsextracted from sources · hover to see the quote

  • Monitor for low-privileged WordPress users (Subscriber role) making requests to Post SMTP email log REST API endpoints, particularly followed by administrator password reset requests — this sequence is the core exploit chain.
  • Flag WordPress sites still running Post SMTP versions up to and including 3.2.0 as vulnerable to CVE-2025-24000. The fix was introduced in version 3.3.0.
  • ·A significant portion of the install base (24.2%, ~96,800 sites) runs Post SMTP 2.x branch, which is vulnerable to additional, separate security flaws beyond CVE-2025-24000.
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.