Live Vulnerability Intelligence

Threat Database

Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.

Total2

Critical0

High0

Medium2

Search Severity Year Type Sort Order

Reset

Showing 1-2 of 2 records

Threat Entry Updated 2025-01-16

CVE-2025-23423 - SendGrid for WordPress Plugin

Missing Authorization vulnerability in Smackcoders SendGrid for WordPress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects SendGrid for WordPress: from n/a through 1.4.

PLUGIN SendGrid for WordPress

CVE-2025-23423

MEDIUM CVSS 4.3 2025-01-16

Risk Score

Open Full Technical Breakdown

Threat Entry Updated 2024-10-22

CVE-2024-9364 - Sendgrid For Wordpress Plugin

The SendGrid for WordPress plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'wp_mailplus_clear_logs' function in all versions up to, and including, 1.4. This makes it possible for authenticated attackers, with Subscriber-level access and above, to delete the plugin's log files.

PLUGIN Sendgrid For Wordpress

CVE-2024-9364

MEDIUM CVSS 4.3 2024-10-18

Risk Score

Open Full Technical Breakdown

Blog

"Prevention is cheaper than a breach"

Threat Database

CVE-2025-23423 - SendGrid for WordPress Plugin

CVE-2024-9364 - Sendgrid For Wordpress Plugin

Company Links

Contact Us