cbcvebase.

Wpfunnels Mail Mint vulnerabilities

4 known vulnerabilities affecting wpfunnels/mail_mint.

Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
1
Severity breakdown
HIGH4

Vulnerabilities

Page 1 of 1
CVE-2026-23541P2HIGHCVSS 7.5Exploited≤ 1.19.42026-02-19
CVE-2026-23541 [HIGH] CWE-862 CVE-2026-23541: Missing Authorization vulnerability in WPFunnels Mail Mint mail-mint allows Accessing Functionality Missing Authorization vulnerability in WPFunnels Mail Mint mail-mint allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Mail Mint: from n/a through <= 1.19.4.
nvd
CVE-2025-59570P3HIGHCVSS 7.6≤ 1.18.62025-09-22
CVE-2025-59570 [HIGH] CWE-89 CVE-2025-59570: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WPFunnels Mail Mint mail-mint allows SQL Injection.This issue affects Mail Mint: from n/a through <= 1.18.6.
nvd
CVE-2025-58604P3HIGHCVSS 7.6≤ 1.18.52025-09-03
CVE-2025-58604 [HIGH] CWE-89 CVE-2025-58604: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WPFunnels Mail Mint mail-mint allows SQL Injection.This issue affects Mail Mint: from n/a through <= 1.18.5.
nvd
CVE-2025-47541P3HIGHCVSS 7.5≤ 1.17.72025-05-23
CVE-2025-47541 [HIGH] CWE-201 CVE-2025-47541: Insertion of Sensitive Information Into Sent Data vulnerability in WPFunnels Mail Mint mail-mint all Insertion of Sensitive Information Into Sent Data vulnerability in WPFunnels Mail Mint mail-mint allows Retrieve Embedded Sensitive Data.This issue affects Mail Mint: from n/a through <= 1.17.7.
nvd
Wpfunnels Mail Mint vulnerabilities | cvebase