Attackers Actively Exploiting Critical Vulnerability in Post SMTP Plugin

On October 11th, 2025, we received a submission for an Account Takeover via Email Log Disclosure vulnerability in Post SMTP, a WordPress plugin with more than 400,000 active installations. This vulnerability makes it possible for an unauthenticated attacker to view email logs, including password reset emails, and change the password of any user, including an administrator, which allows them to take over the account and the website. We originally published this vulnerability on October 31st, 2025 and our records indicate that attackers started exploiting the issue the next day on November 1st, 2025. It appears mass exploitation started the following

Click here to continue reading this article.

István Márton

Author archive

November 20, 2025

Plugins, Threat Research, Vulnerabilities, Wordfence Intelligence, WordPress Blogs, WordPress Plugin Vulnerability News November 2025, WordPress Security, WordPress Security News November 2025

Comments are closed.

Up ↑

Your WordPress News Dashboard

Attackers Actively Exploiting Critical Vulnerability in Post SMTP Plugin

István Márton

Latest posts

Text widget

Sponsored by WP Mayor

Latest posts

Built with WP RSS Aggregator