CVE-2026-2025
published 2026-03-04CVE-2026-2025: The Mail Mint WordPress plugin before 1.19.5 does not have authorization in one of its REST API endpoint, allowing unauthenticated users to call it and…
PriorityP180high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
ITWEXPLOITVulnCheck KEV
Exploited in the wild
EPSS
1.38%
68.7th percentile
The Mail Mint WordPress plugin before 1.19.5 does not have authorization in one of its REST API endpoint, allowing unauthenticated users to call it and retrieve the email addresses of users on the blog
Detection & IOCsextracted from sources · hover to see the quote
- →Detect exploitation attempts by monitoring GET requests to the unauthenticated REST API endpoint /wp-json/mrm/v1/wp/admins with a 'term' parameter containing '@', with no authentication headers. ↗
- →A successful exploitation response will return HTTP 200 with Content-Type application/json and a body containing the keys 'admins', 'label', and an '@' character (email address). ↗
- →Identify Mail Mint plugin installations by searching for the plugin path string in page bodies, which can be used for mass scanning/fingerprinting prior to exploitation. ↗
- ·The vulnerability affects Mail Mint WordPress plugin versions before 1.19.5 only. Installations running 1.19.5 or later are not vulnerable. ↗
- ·Exploitation requires no authentication whatsoever — any unauthenticated HTTP client can call the endpoint and retrieve user email addresses. ↗
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
vulncheck7.5HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-rgg8-j3f4-j5pg: The Mail Mint WordPress plugin before 1
ghsa_unreviewed·2026-03-04
CVE-2026-2025 [HIGH] CWE-200 GHSA-rgg8-j3f4-j5pg: The Mail Mint WordPress plugin before 1
The Mail Mint WordPress plugin before 1.19.5 does not have authorization in one of its REST API endpoint, allowing unauthenticated users to call it and retrieve the email addresses of users on the blog
VulnCheck
Exposure of Sensitive Information to an Unauthorized Actor
vulncheck·2026·CVSS 7.5
CVE-2026-2025 [HIGH] Exposure of Sensitive Information to an Unauthorized Actor
Exposure of Sensitive Information to an Unauthorized Actor
The Mail Mint WordPress plugin before 1.19.5 does not have authorization in one of its REST API endpoint, allowing unauthenticated users to call it and retrieve the email addresses of users on the blog
Required Action: Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.
Exploitation References: https://api.vulncheck.com/v3/index/vulncheck-canaries?cve=CVE-2026-2025&date=2026-04-30
No detection rules found.
Nuclei
Mail Mint < 1.19.5 - Unauthenticated Email Disclosure
nuclei·CVSS 7.5
CVE-2026-2025 [HIGH] Mail Mint < 1.19.5 - Unauthenticated Email Disclosure
Mail Mint < 1.19.5 - Unauthenticated Email Disclosure
Mail Mint WordPress plugin < 1.19.5 contains an information disclosure vulnerability caused by lack of authorization in a REST API endpoint, letting unauthenticated users retrieve email addresses of blog users, exploit requires no authentication.
Template:
id: CVE-2026-2025
info:
name: Mail Mint < 1.19.5 - Unauthenticated Email Disclosure
author: 0x_Akoko
severity: high
description: |
Mail Mint WordPress plugin < 1.19.5 contains an information disclosure vulnerability caused by lack of authorization in a REST API endpoint, letting unauthenticated users retrieve email addresses of blog users, exploit requires no authentication.
impact: |
Unauthenticated attackers can retrieve email addresses of users, leading to privacy breaches and
Wiz
CVE-2026-2025 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.8
CVE-2026-2025 [CRITICAL] CVE-2026-2025 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-2025 :
WordPress vulnerability analysis and mitigation
The Mail Mint WordPress plugin before 1.19.5 does not have authorization in one of its REST API endpoint, allowing unauthenticated users to call it and retrieve the email addresses of users on the blog
Source : NVD
## 7.5
Score
Published March 4, 2026
Severity HIGH
CNA Score 7.5
Affected Technologies
WordPress
Has Public Exploit Yes
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 96.5
Exploitation Probability (EPSS) 28
Affected packages and libraries
mail-mint
Sources
NVD
## Get a CVE risk assessment
Get a prioritized view of CVEs in your cloud—so you can focus on what's exploitable, not just what's listed.
## Related WordPress vu
Wiz
CVE-2025-20805 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 6.7
CVE-2025-20805 [MEDIUM] CVE-2025-20805 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2025-20805 :
NixOS vulnerability analysis and mitigation
In dpe, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10114696; Issue ID: MSV-4480.
Source : NVD
## 6.7
Score
Published January 6, 2026
Severity MEDIUM
CNA Score 6.7
Affected Technologies
NixOS
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 0.4
Exploitation Probability (EPSS) N/A
Affected packages and libraries
android
Sources
NVD
Nix Severity MEDIUM No Fix Added at: Jan 12, 2026
## Get a CVE risk assessment
Get a prioritize
Wiz
CVE-2025-13652 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 6.5
CVE-2025-13652 [MEDIUM] CVE-2025-13652 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2025-13652 :
WordPress vulnerability analysis and mitigation
The CBX Bookmark & Favorite plugin for WordPress is vulnerable to generic SQL Injection via the ‘orderby’ parameter in all versions up to, and including, 2.0.4 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with Subscriber-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.
Source : NVD
## 6.5
Score
Published January 6, 2026
Severity MEDIUM
CNA Score 6.5
Affected Technologies
WordPress
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
E
Wiz
CVE-2025-52564 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 6.9
CVE-2025-52564 [MEDIUM] CVE-2025-52564 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2025-52564 :
Chamilo vulnerability analysis and mitigation
Chamilo is a learning management system. Prior to version 1.11.30, the open parameter of help.php fails to properly sanitize user input. This allows an attacker to inject arbitrary HTML, such as underlined text, via a crafted URL. This issue has been patched in version 1.11.30.
Source : NVD
## 6.9
Score
Published March 2, 2026
Severity MEDIUM
CNA Score 6.9
Affected Technologies
Chamilo
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 11.1
Exploitation Probability (EPSS) N/A
Affected packages and libraries
cpe:2.3:a:chamilo:chamilo_lms
Sources
Linux Severity MEDIUM Has Fix Added at: Mar 04, 2026
Windows Severity MEDI
Wiz
CVE-2025-13673 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 7.5
CVE-2025-13673 [HIGH] CVE-2025-13673 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2025-13673 :
WordPress vulnerability analysis and mitigation
The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to SQL Injection via the 'coupon_code' parameter in all versions up to, and including, 3.9.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database. NOTE: This vulnerability was partially mitigated in versions 3.9.4 and 3.9.6.
Source : NVD
## 7.5
Score
Published February 28, 2026
Severity HIGH
CNA Score 7.5
Affected Technologies
WordPress
Has Public Exploit No
Has CISA KEV Exp
Wiz
CVE-2022-50689 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 6.9
CVE-2022-50689 [MEDIUM] CVE-2022-50689 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2022-50689 :
Homebrew vulnerability analysis and mitigation
Cobian Reflector 0.9.93 RC1 contains a denial of service vulnerability that allows attackers to crash the application by overflowing the password input field. Attackers can paste a large 8000-byte buffer into the password field to trigger an application crash during SFTP task configuration.
Source : NVD
## 6.9
Score
Published December 22, 2025
Severity MEDIUM
CNA Score 6.9
Affected Technologies
Homebrew
Has Public Exploit Yes
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 3.3
Exploitation Probability (EPSS) N/A
Affected packages and libraries
reflector
Sources
NVD
Homebrew Severity MEDIUM No Fix Added at: Jan 01, 2026
## Get a CVE r
Bugzilla
CVE-2025-58189 dnscrypt-proxy: go crypto/tls ALPN negotiation error contains attacker controlled information [fedora-42]
bugzilla·2025-10-30·CVSS 5.3
CVE-2025-58189 [MEDIUM] CVE-2025-58189 dnscrypt-proxy: go crypto/tls ALPN negotiation error contains attacker controlled information [fedora-42]
CVE-2025-58189 dnscrypt-proxy: go crypto/tls ALPN negotiation error contains attacker controlled information [fedora-42]
Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process.
The following link provides references to all essential vulnerability management information. If something is wrong or missing, please contact a member of PSIRT.
https://spaces.redhat.com/display/PRODSEC/Vulnerability+Management+-+Essential+Documents+for+Engineering+Teams
Discussion:
This message is a reminder that Fedora Linux 42 is nearing its end of life.
Fedora will stop maintaining and issuing updates for Fedora Linux 42 on 2026-05-13.
It is
Bugzilla
CVE-2025-43718 poppler: Poppler stack overflow [fedora-42]
bugzilla·2025-10-02·CVSS 2.9
CVE-2025-43718 [LOW] CVE-2025-43718 poppler: Poppler stack overflow [fedora-42]
CVE-2025-43718 poppler: Poppler stack overflow [fedora-42]
Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process.
The following link provides references to all essential vulnerability management information. If something is wrong or missing, please contact a member of PSIRT.
https://spaces.redhat.com/display/PRODSEC/Vulnerability+Management+-+Essential+Documents+for+Engineering+Teams
Discussion:
This message is a reminder that Fedora Linux 42 is nearing its end of life.
Fedora will stop maintaining and issuing updates for Fedora Linux 42 on 2026-05-13.
It is Fedora's policy to close all bug reports from releases that ar
2026-03-04
Published
Exploited in the wild