weMail: Email Marketing, Email Automation, Newsletters, Subscribers & Email Optins for WooCommerce — Vulnerabilities & Security Advisories 2

All 2 CVE vulnerabilities found in weMail: Email Marketing, Email Automation, Newsletters, Subscribers & Email Optins for WooCommerce, with AI-generated Chinese analysis, references, and POCs.

Vendor: wedevs

CVE ID	Title	CVSS	Severity	Published
CVE-2025-14339	weMail <= 2.0.7 - Missing Authorization to Unauthenticated Form Deletion CWE-862	6.5	Medium	2026-02-21
CVE-2025-14348	weMail <= 2.0.7 - Insufficient Authorization via x-wemail-user Header to Sensitive Information Disclosure CWE-285	5.3	Medium	2026-01-20

All 2 known CVE vulnerabilities affecting weMail: Email Marketing, Email Automation, Newsletters, Subscribers & Email Optins for WooCommerce with full Chinese analysis, references, and POCs where available.

Goal Reached Thanks to every supporter — we hit 100%!

weMail: Email Marketing, Email Automation, Newsletters, Subscribers & Email Optins for WooCommerce — Vulnerabilities & Security Advisories 2