Hackers Exploit Gravity SMTP WordPress Plugin Bug to Expose API Keys

nsamag June 22, 2026

Attackers are exploiting CVE-2026-4020 in the Gravity SMTP WordPress plugin to expose API keys across ~100,000 sites. Update to 2.1.5 and rotate keys.

hackers-exploit-gravity-smtp-wordpress-plugin-bug-to-expose-api-keys

What’s new: Hackers are exploiting a recently patched vulnerability (CVE-2026-4020) in the Gravity SMTP WordPress plugin, affecting around 100,000 sites. This medium-severity flaw allows unauthenticated attackers to access sensitive data, including API keys and configuration details, through a misconfigured REST API endpoint.

Who’s affected

Site owners using the Gravity SMTP plugin, particularly those with third-party email integrations configured, are at risk. The vulnerability has been actively exploited since early May 2026, with over 17 million exploit attempts recorded.

What to do

  • Update the Gravity SMTP plugin to version 2.1.5 immediately.
  • Rotate any API keys and credentials that may have been exposed.
  • Review server log files for suspicious requests from known malicious IP addresses.

Sources

Related Posts:

More Stories

unpatchable-usbliter8-exploit-breaks-apple-a12-and-a13-securerom-boot-chain

Unpatchable ‘usbliter8’ Exploit Breaks Apple A12 and A13 SecureROM Boot Chain

nsamag June 22, 2026
nsauditor-ai-ee-0301-strengthens-aws-security-by-closing-vulnerabilities-in-rds-

“NSAuditor AI EE 0.30.1 Strengthens AWS Security by Closing Vulnerabilities in RDS and API Gateway”

nsamag June 22, 2026
nsauditor-ai-ee-0-30-0-cloud-false-negative-depth-pass

NSAuditor AI EE 0.30.0: Closing Cloud False-Negatives and Unifying the Compliance Verdict Across Seven Frameworks

nsamag June 18, 2026

You may have missed

unpatchable-usbliter8-exploit-breaks-apple-a12-and-a13-securerom-boot-chain

Unpatchable ‘usbliter8’ Exploit Breaks Apple A12 and A13 SecureROM Boot Chain

nsamag June 22, 2026
hackers-exploit-gravity-smtp-wordpress-plugin-bug-to-expose-api-keys

Hackers Exploit Gravity SMTP WordPress Plugin Bug to Expose API Keys

nsamag June 22, 2026
nsauditor-ai-ee-0301-strengthens-aws-security-by-closing-vulnerabilities-in-rds-

“NSAuditor AI EE 0.30.1 Strengthens AWS Security by Closing Vulnerabilities in RDS and API Gateway”

nsamag June 22, 2026
nsauditor-ai-ee-0-30-0-cloud-false-negative-depth-pass

NSAuditor AI EE 0.30.0: Closing Cloud False-Negatives and Unifying the Compliance Verdict Across Seven Frameworks

nsamag June 18, 2026
orphaned-ai-agents-how-to-find-hidden-access-risks-inside-your-network

ThreatsDay Bulletin: Claude Chat Abuse, NastyC2 npm Packages, Device-Code Phishing + 25 More Stories

nsamag June 18, 2026