Exploited Bug in Gravity SMTP WordPress Plugin
Overview A new wave of attacks is targeting the Gravity SMTP WordPress plugin, which is active on over 100,000 sites. The flaw, tracked as CVE‑2026‑4020, allows unauthenticated information disclosure […]