Support » Plugin: Easy WP SMTP » Hacked! Critical Vulnerability Exposed 300k+ Sites

  • Critical 0 day vulnerability affected 300k+ sites about a month ago, including mine. Admin url redirected to spam sites, but could have been much much much worse as it was exploited to gain complete admin control of many sites. Reviewing after finally deleting this plugin. Do not use, just use “WP Mail SMTP” plugin instead.

    Google “easy wp smtp plugin vulnerability” to see how severe this was. Still took them 2 days to release a patch after being notified! Not worth the risk, do not install!

  • You must be logged in to reply to this review.