Mail Mint – Email Marketing, Newsletter, Email Automation & WooCommerce Emails — Vulnerabilities & Security Advisories 3

All 3 CVE vulnerabilities found in Mail Mint – Email Marketing, Newsletter, Email Automation & WooCommerce Emails, with AI-generated Chinese analysis, references, and POCs.

Vendor: getwpfunnels

CVE ID	Title	CVSS	Severity	Published
CVE-2026-1258	Mail Mint <= 1.19.2 - Authenticated (Administrator+) SQL Injection via Multiple API Endpoints CWE-89	4.9	Medium	2026-02-14
CVE-2026-1447	Mail Mint <= 1.19.2 - Cross-Site Request Forgery to Stored Cross-Site Scripting CWE-352	5.4	Medium	2026-02-03
CVE-2025-11967	Mail Mint <= 1.18.10 - Authenticated (Admin+) Arbitrary File Upload CWE-434	7.2	High	2025-11-08

All 3 known CVE vulnerabilities affecting Mail Mint – Email Marketing, Newsletter, Email Automation & WooCommerce Emails with full Chinese analysis, references, and POCs where available.

Goal Reached Thanks to every supporter — we hit 100%!

Mail Mint – Email Marketing, Newsletter, Email Automation & WooCommerce Emails — Vulnerabilities & Security Advisories 3