THREAT actors are exploiting a medium-severity vulnerability (CVE-2026-4020) in the Gravity SMTP WordPress plugin, affecting versions before 2.1.5. This vulnerability allows unauthenticated users to access sensitive system information through a REST API endpoint that lacks proper authentication checks. Since early May, attackers have been able to steal complete system details, leading Defiant to block over 17 million exploit attempts. Website administrators are urged to update to version 2.1.5 and rotate any exposed API credentials.
Gravity SMTP Plugin Flaw (CVE-2026-4020) Exposes Site Data
CyberSIXT Evidence Panel
Article by CyberSIXT
Timeline Coverage
Swipe to explore timeline
-
Gravity SMTP Plugin Flaw (CVE-2026-4020) Exposes Site Data
www.securityweek.com
-
Gravity SMTP WordPress Plugin flaw exposes API keys, urging patch
cybersixt.com
-
Critical flaw in Gravity SMTP (CVE-2026-4020) exposes API keys