The Super Store Finder plugin for WordPress has a security flaw in versions up to and including 6.9.2. Unauthenticated attackers can use the plugin to send emails from the website’s server, with whatever content they want. This vulnerability has already been made public, and unfortunately there is no fix available yet. We are trying to contact the developer to get it patched.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
