CVE report

CVE-2026-4020HIGH

Gravity SMTP WordPress Plugin - Sensitive Information Exposure

Events 7d

35

Distinct IPs

5

Severity

HIGH

CISA KEV

Not listed

Daily probe volume (last 7 days)

peak: 23
2026-05-15: 6 events05-152026-05-16: 23 events05-162026-05-17: 4 events05-172026-05-19: 2 events05-19

Downloads & integrations

Top sources probing for CVE-2026-4020

URL patterns we match

An event counts toward CVE-2026-4020 if its URL path contains any of these substrings (case-insensitive).

  • /wp-json/gravitysmtp/v1/tests/mock-data?page=gravitysmtp-settings
  • /wp-json/gravitysmtp/v1/tests/mock-data