PT-2026-43243 · Zohocorp · Zoho Mail Wordpress Plugin

Published

2026-05-26

·

Updated

2026-05-26

·

CVE-2026-8174

CVSS v3.1

5.7

Medium

VectorAV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N
Zohocorp Zoho Mail wordpress plugin is vulnerable to Cross-Site request forgery (CSRF).
This issue affects Zoho Mail wordpress plugin versions before 1.6.2.

Fix

CSRF

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-352

Related Identifiers

CVE-2026-8174

Affected Products

Zoho Mail Wordpress Plugin