• Resolved novy85

    (@novy85)


    Hello!
    I would like to report a probable plugin vulnerability. Lately I sent a newsletter to my contact list on the site and today all the email addresses on the mailing list received a spam email with a .rar and a password to open it. I have updated the plugin to the latest version (5.0.7), and I have WP 5.8.2.
    Is there anything I can do to make the site more secure?

    The page I need help with: [log in to see the link]

Viewing 5 replies - 1 through 5 (of 5 total)
  • Plugin Contributor kishanranawat

    (@kishanranawat)

    Hello,

    Thanks for contacting us.

    This seems a bit strange issue. Also, we have tested the issue at our end but haven’t received any spam email.

    If you can give some more information related to the issue that would help us in understanding the issue better.

    I sent a newsletter to my contact list on the site and today all the email addresses on the mailing list received a spam email with a .rar and a password to open it
    –> Here you mean to say, you sent a newsletter using the plugin and instead of receiving the sent newsletter, your contacts received the spam email? or they received both the newsletter and the spam emails?

    All the newsletter emails sent to subscribers are listed on the Reports page. You can check them from Email Subscribers –> Reports menu. Can you please confirm if the spam email is also listed there?

    Hope this helps you. Let us know if you have any further queries.

    Thank you.

    Thread Starter novy85

    (@novy85)

    @kishanranawat
    Hello, thank You for your reply and support.
    I sent a newsletter to my contact list on the site etc…
    –> My contacts received both the newsletter and the spam emails.
    Can you please confirm if the spam email is also listed there?
    -> The spam e-mail is not listed here

    Plugin Contributor kishanranawat

    (@kishanranawat)

    Hello @novy85,

    Thanks for giving us more information related to the issue.

    Since the spam email is not listed on the reports page, there are fewer chances that the email got sent through the plugin but we need to confirm it further through the below steps

    1. Confirming if the issue is occurring consistently
    Can you please try sending some test newsletters to some of your test emails and check if the spam email is also getting sent every time?

    2. Checking for a possible plugin or theme conflict
    Will it be possible for you to perform a conflict test on your site? You may need to temporarily disable all other plugins except the Email Subscribers plugin and switch to a default WordPress theme.
    We recommend doing the troubleshooting using the Health Check plugin which disables all the plugins and switches the current theme to the default theme only for the current logged-in user when troubleshooting mode is enabled. It does not affect other users or site visitors. You can get the Health Check plugin from here. After enabling the troubleshooting mode, activate the Email Subscribers plugin, and check if the issue is resolved or not. If the issue is resolved, then it indicates a possible conflict with one of your active plugins or theme. Activate them one by one and check for the issue till you find the conflicting plugin or theme.

    3. If the issue is not resolved then please allow us to further debug the issue on your site. You can open a support ticket here. We will then look into the issue from there.

    Note: Please mention this thread URL while opening the ticket so that we can link back it in our private support channel.

    Hope this helps you. Let us know what comes out or if you have any further queries.

    Thank you.

    Plugin Contributor kishanranawat

    (@kishanranawat)

    Hello @novy85,

    We haven’t heard back from you for a while.
    ?
    Do you have any updates for us related to the issue? Is the issue resolved or are you still facing it?
    ?
    ?Please let us know. Let us know in case if you have any further queries.`

    Thank you.

    Plugin Contributor kishanranawat

    (@kishanranawat)

    Hello @novy85,

    We haven’t heard from you in a while.

    We hope our previous replies were helpful in resolving your issue.

    I am closing this ticket for now. Feel free to reopen it in case you are still facing the issue.

    Thank you.

Viewing 5 replies - 1 through 5 (of 5 total)
  • The topic ‘Spam?’ is closed to new replies.