Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
PHPMailer Mailing List Subscription Bypass Vulnerability in WordPress
MINI-qc96-7j3h-v52w
Summary
An attacker can trick a WordPress site with PHPMailer into subscribing users to a mailing list without their permission. This can lead to unwanted emails being sent to users. To protect your site, update PHPMailer to the latest version or install a security plugin that fixes this issue.
Original title
MINI-qc96-7j3h-v52w
Published: 10 Mar 2026 · Updated: 13 Mar 2026 · First seen: 10 Mar 2026