The WP Helper Premium plugin for WordPress has a security flaw that allows anyone to change the data without permission. This happens because the ‘whp_smtp_send_mail_test’ function does not have a check to make sure only certain people can use it. This means that someone who is not logged in or authorized can send emails from the WordPress website to anyone with any content.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
