Email Encoder – Protect Email Addresses and Phone Numbers

Vulnerabilities 11Slug email-encoder-bundleLatest version 2.5.0WordPress.org →

Minimum safe version

2.4.5

Update to 2.4.5 or later to address 11 fixable vulnerabilities

Latest available2.5.0 ✓

N/A

2026-04-21< 2.3.4

Email Encoder – Protect Email Addresses and Phone Numbers < 2.3.4 - Authenticated (Administrator+) Stored Cross-Site Scripting

Wordfence CVE

Medium 6.4

2026-04-16< 2.4.5

CVE-2026-2840

CVE Patchstack EUVD Wordfence

Medium 5.4

2024-07-29< 2.2.2

CVE-2024-4483

CVE Patchstack Wordfence

Medium 5.4

2024-02-20< 2.2.1

CVE-2024-1282

CVE Wordfence Patchstack WPScan

Medium 5.4

2024-01-11< 2.1.10

CVE-2023-7070

CVE Patchstack Wordfence WPScan

Medium 6.5

2023-11-22< 2.1.9

CVE-2023-47821

CVE Patchstack Wordfence WPScan

Medium 5.4

2023-08-30< 2.1.9

CVE-2023-4599

CVE Wordfence Patchstack WPScan

N/A

2015-08-10< 1.4.2

Email Encoder < 1.4.2 - Cross-Site Scripting

Wordfence

N/A

< 1.4.2

Email Encoder Bundle <= 1.4.1 - Unauthenticated Cross-Site Scripting (XSS)

WPScan

N/A

2015-08-10< 1.4.2

WordPress Email Encoder Bundle Plugin <= 1.4.1 - Cross Site Scripting

Patchstack

Medium 6.1

2021-09-06< 2.1.2

CVE-2021-24599

CVE Wordfence WPScan