Security for everyone

CVE-2017-18518 Scanner

Detects 'Cross-Site Scripting (XSS)' vulnerability in SMTP plugin for WordPress affects v. before 1.1.0.


Short Info




Single Scan

Can be used by

Asset Owner

Estimated Time

10 sec

Scan only one

Domain, Ipv4

Parent Category

CVE-2017-18518 Scanner Detail

SMTP, or Simple Mail Transfer Protocol, is a plugin for WordPress designed to enable the sending of emails from the platform. The SMTP plugin is crucial for website administrators who need to send transactional emails to users, such as password resets, user registrations, and email newsletters. SMTP streamlines the process of sending emails from WordPress websites and ensures that the emails reach the intended recipient.

One vulnerability that has been detected within the SMTP plugin is CVE-2017-18518. This vulnerability is an XSS (Cross-Site Scripting) issue, meaning that it allows an attacker to inject malicious scripts into a web page viewed by another user. This vulnerability exploits a lack of input sanitization, leading to the execution of unwanted actions, including stealing user information, destroying data, or serving malware.

When exploited, the CVE-2017-18518 vulnerability can have devastating effects on a website's functionality and security. An attacker could use this vulnerability to inject malicious scripts that could, in turn, steal sensitive information, including passwords, bank details, and other personal data. An attacker could also exploit the vulnerability to hijack user accounts, redirect traffic to other malicious websites, and install malware on the user's device.

In conclusion, it is crucial to protect websites against CVE-2017-18518 and other vulnerabilities that may arise. By using the pro features of the platform, website administrators can quickly and easily perform vulnerability scans and identify issues that need to be fixed. This way, website administrators can ensure that their digital assets are protected against malicious actors and that their users' data remains secure.



cyber security services for everyone one. Free security tools, continuous vulnerability scanning and many more.
Try it yourself,
control security posture