What happened Threat actors are actively exploiting an unauthenticated information disclosure vulnerability in the Gravity SMTP WordPress plugin, which is installed on more than 100,000 WordPress ...
Attackers gain access to protected data on WordPress websites with Gravity-SMTP plugin. Currently, attackers are targeting WordPress websites with the Gravity-SMTP plugin and attacking instances. A ...
Wordfence blocked 17M+ attempts to exploit a Gravity SMTP bug that leaks API keys and system data from WordPress sites without authentication. Attackers are actively exploiting a vulnerability in the ...
Threat actors are exploiting an unauthenticated information disclosure vulnerability in the WordPress plugin Gravity SMTP, active on 100,000 sites. The flaw is tracked as CVE-2026-4020 and received a ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results