Elastic Email Sender CVEs and Security Vulnerabilities

Filtered by vendor Elasticemail Subscriptions

Filtered by product Elastic Email Sender Subscriptions

Switch to Advanced Search (Beta)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2025-66525	2 Elasticemail, Wordpress	2 Elastic Email Sender, Wordpress	2025-12-10	4.3 Medium
Missing Authorization vulnerability in Elastic Email Elastic Email Sender elastic-email-sender allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Elastic Email Sender: from n/a through <= 1.2.20.
CVE-2023-38387	1 Elasticemail	1 Elastic Email Sender	2024-11-21	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Elastic Email Sender plugin <= 1.2.6 versions.

Page 1 of 1.