CVE-2025-24000

Published Aug 7, 2025

Last updated 3 days ago

CVSS high 8.8
SMTP

Overview

Description
Authentication Bypass Using an Alternate Path or Channel vulnerability in Saad Iqbal Post SMTP post-smtp allows Authentication Bypass.This issue affects Post SMTP: from n/a through <= 3.2.0.
Source
audit@patchstack.com
NVD status
Deferred

Risk scores

CVSS 3.1

Type
Secondary
Base score
8.8
Impact score
5.9
Exploitability score
2.8
Vector string
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Severity
HIGH

Weaknesses

audit@patchstack.com
CWE-288

Social media

Hype score
Not currently trending

  1. 🚨 CVE-2025-24000 — Post SMTP (WordPress) : un utilisateur low-privilege peut lire les logs mail et intercepter les liens de reset → hijack du compte admin. &gt;400k installs, ~160k encore vulnérables. Mettez à jour immédiatement vers 3.3.0.

    @CyberHebdo

    5 Nov 2025

    4 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  2. CVE-2025-24000 Authentication Bypass Using an Alternate Path or Channel vulnerability in WPExperts Post SMTP allows Authentication Bypass.This issue affects Post SMTP: from n/a thro… https://t.co/VwPycKcdyo

    @CVEnew

    7 Aug 2025

    149 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. [CVE-2025-24000: HIGH] Authentication Bypass Using an Alternate Path or Channel vulnerability in WPExperts Post SMTP allows Authentication Bypass.This issue affects Post SMTP: from n/a through 3.2.0.#cve,CVE-2025-24000,#cybersecurity https://t.co/8WWLwbCqIx https://t.co/7GuPcACx8

    @CveFindCom

    7 Aug 2025

    67 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  4. ⚠️Vulnerabilidad en el complemento Post SMTP de WordPress ❗CVE-2025-24000 ➡️Más info: https://t.co/5iCyGgqTty https://t.co/QbwJVdEA0k

    @CERTpy

    5 Aug 2025

    91 Impressions

    1 Retweet

    2 Likes

    1 Bookmark

    0 Replies

    0 Quotes

  5. اگر وب سایت تو روی Wordpress هست ، حتما بررسی کن. به تازگی برای پلاگین Post SMTP آسیب پذیری با کد شناسایی CVE-2025-24000 منتشر شده است که ۴۰۰ هزار وب سایت را در معرض هک شدن ق

    @AmirHossein_sec

    29 Jul 2025

    50 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  6. Lỗ hổng chiếm đoạt tài khoản nghiêm trọng trong plugin Post SMTP ảnh hưởng đến hơn 400.000 trang web (CVE-2025-24000) Phiên bản bị ảnh hưởng 3.2.0 trở về trước https://t.co/coRrU9ah2b Chi tiết: https://t.co/x6DEQfyqz1 #vutruso #posts

    @vutruso

    29 Jul 2025

    56 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  7. WordPressの「Post SMTP」プラグインに深刻なアカウント乗っ取りの脆弱性、40万サイト以上に影響(CVE-2025-24000) #セキュリティ対策Lab #セキュリティ #Security https://t.co/rtYx0rzMzY

    @securityLab_jp

    29 Jul 2025

    101 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  8. 🚨 Más de 200,000 sitios WordPress están en riesgo por una falla crítica en el plugin Post SMTP (CVE-2025-24000). ¡Actualiza a la versión 3.3.0 ya! #WordPress #SeguridadWeb #SISAPNews https://t.co/BBImMCNVjx

    @SISAP_LATAM

    28 Jul 2025

    34 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  9. ثغرة حرجة تهدد أكثر من 400 ألف موقع ووردبريس! اكتشف باحث أمني خللاً في اضافة @PostSMTP يسمح لأي مستخدم مُسجّل بالوصول لبيانات حساسة وإعادة تعيين كلمات مرور الم

    @cyberscastx

    28 Jul 2025

    1352 Impressions

    1 Retweet

    11 Likes

    6 Bookmarks

    1 Reply

    0 Quotes

  10. Le plugin WordPress post SMTP est affecté par une faille (CVE-2025-24000) qui permet à un hacker de prendre le contrôle du compte administrateur. Plus de 400000 sites ont installé ce plugin. Un correctif est disponible depuis le 11 juin https://t.co/qdp5TnTpmE

    @cert_ist

    28 Jul 2025

    56 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  11. Post SMTP plugin flaw exposes 200K WordPress sites to hijacking attacks Over 200,000 WordPress sites remain vulnerable due to using outdated versions of the Post SMTP plugin, which has over 400,000 active installs. The flaw, tracked as CVE-2025-24000 (severity 8.8), affects http

    @dCypherIO

    28 Jul 2025

    33 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  12. Una grave vulnerabilidad ha sido descubierta en el plugin de WordPress "Post SMTP", que está activo en más de 400,000 sitios. La falla, identificada como CVE-2025-24000, permite a un atacante tomar el control total de un sitio web afectado, lo que representa un riesgo crítico

    @citarafy

    28 Jul 2025

    34 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  13. Falha no post SMTP: Proteja seu site WordPress agora (CVE-2025-24000) https://t.co/QfAflT4fRC

    @SempreUpdate

    28 Jul 2025

    25 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  14. 🚨 From MEMBER to ADMIN — in under 60 seconds. We reproduced CVE-2025-24000: A serious flaw in the Post SMTP plugin (≤ v3.2.0) that exposes WordPress sites to takeover. Here’s the full breakdown ⬇️

    @Sector_Sec

    28 Jul 2025

    3 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  15. Critical SMTP Plugin Flaw Puts 200K WordPress Sites at Risk https://t.co/upAlRH5h8H #cve-2025-24000 #EmailLogExploit #PluginUpdateUrgency #WordpressSecurity

    @wizconsults

    27 Jul 2025

    47 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  16. CVE-2025-24000: Post SMTP Vulnerability &amp; Admin Takeover of WordPress Sites #WordPress #CVE202524000 #PostSMTP #PluginVulnerability #WebsiteSecurity #CyberSecurity #AdminHijack #UpdateNow #WPPlugins #InfoSec https://t.co/YDifYq5vLC

    @cyashadotcom

    27 Jul 2025

    4 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  17. Post SMTPプラグインの脆弱性が20万以上のWordPressサイトを危険にさらす(CVE-2025-24000) https://t.co/QvfS0eCjjv #Security #セキュリティ #ニュース

    @SecureShield_

    27 Jul 2025

    8 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  18. Over 200000 WordPress sites use a vulnerable Post SMTP plugin version(CVE-2025-24000), allowing hackers to control admin accounts. The flaw, due to poor access control, affects versions up to 3.2.0. Less than half have updated to the fixed version, leaving many exposed. #Security

    @Strivehawk

    26 Jul 2025

    27 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  19. Over 200,000 WordPress sites using the Post SMTP plugin remain vulnerable to CVE-2025-24000, risking admin account hijacking due to broken access controls. Many haven’t updated to version 3.3.0. #WPSecurity #PluginRisk #UK https://t.co/vgYf45kxOU

    @TweetThreatNews

    26 Jul 2025

    81 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

Related CVEs

  1. Suricata is a network IDS, IPS and NSM engine. From version 8.0.0 to before version 8.0.4, there is a quadratic complexity issue when searching for URLs in mime encoded messages over SMTP leading to a performance impact. This issue has been patched in version 8.0.4.CVE-2026-31934
  2. The Gravity SMTP plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.1.4. This is due to a REST API endpoint registered at /wp-json/gravitysmtp/v1/tests/mock-data with a permission_callback that unconditionally returns true, allowing any unauthenticated visitor to access it. When the ?page=gravitysmtp-settings query parameter is appended, the plugin's register_connector_data() method populates internal connector data, causing the endpoint to return approximately 365 KB of JSON containing the full System Report. This makes it possible for unauthenticated attackers to retrieve detailed system configuration data including PHP version, loaded extensions, web server version, document root path, database server type and version, WordPress version, all active plugins with versions, active theme, WordPress configuration details, database table names, and any API keys/tokens configured in the plugin.CVE-2026-4020
  3. Incorrect Privilege Assignment vulnerability in Bit Apps Bit SMTP bit-smtp allows Privilege Escalation.This issue affects Bit SMTP: from n/a through <= 1.2.2.CVE-2026-32519
  4. NGINX Plus and NGINX Open Source have a vulnerability in the ngx_mail_smtp_module module due to the improper handling of CRLF sequences in DNS responses. This allows an attacker-controlled DNS server to inject arbitrary headers into SMTP upstream requests, leading to potential request manipulation. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.CVE-2026-28753
  5. MimeKit is a C# library which may be used for the creation and parsing of messages using the Multipurpose Internet Mail Extension (MIME), as defined by numerous IETF specifications. Prior to version 4.15.1, a CRLF injection vulnerability in MimeKit allows an attacker to embed \r\n into the SMTP envelope address local-part (when the local-part is a quoted-string). This is non-compliant with RFC 5321 and can result in SMTP command injection (e.g., injecting additional RCPT TO / DATA / RSET commands) and/or mail header injection, depending on how the application uses MailKit/MimeKit to construct and send messages. The issue becomes exploitable when the attacker can influence a MailboxAddress (MAIL FROM / RCPT TO) value that is later serialized to an SMTP session. RFC 5321 explicitly defines the SMTP mailbox local-part grammar and does not permit CR (13) or LF (10) inside Quoted-string (qtextSMTP and quoted-pairSMTP ranges exclude control characters). SMTP commands are terminated by <CRLF>, making CRLF injection in command arguments particularly dangerous. This issue has been patched in version 4.15.1.CVE-2026-30227

References

Sources include official advisories and independent security research.