Medium 4.3
2025-12-31< 3.12.6
Email Capture <= 3.12.5 - Cross-Site Request Forgery
Email Marketing Plugin – WP Email Capture
Minimum safe version
3.12.6
Update to 3.12.6 or later to address 7 fixable vulnerabilities
Latest available3.12.7 ✓
Medium 5.3
2025-12-09< 3.12.5
CVE-2025-67578
Medium 5.3
2023-12-21< 3.11
CVE-2023-28421
N/A
2023-03-14< 3.11
WordPress Email Marketing Plugin – WP Email Capture <= 3.10 - Missing Authorization to Email Capture List Download
Medium 5.9
2023-05-02< 3.11
CVE-2023-23723
Medium 4.3
2023-05-23< 3.10
CVE-2023-23724
N/A
2023-01-30< 3.10
WP Email Capture <= 3.9.3 - Authenticated (Administrator+) Stored Cross-Site Scripting