WP-Safety

MailPoet – Newsletters, Email Marketing, and Automation Security & Risk Analysis

wordpress.org/plugins/mailpoet

Send beautiful newsletters from WordPress. Collect subscribers with signup forms, automate your emails for WooCommerce, blog post notifications & more

500K active installs v5.22.1 PHP 7.4+ WP 6.8+ Updated Mar 10, 2026
email-automationemail-marketingnewsletterpost-notificationwoocommerce-emails
98
A · Safe
CVEs total3
Unpatched0
Last CVEMar 6, 2025
Plugin page Download
Safety Verdict

Is MailPoet – Newsletters, Email Marketing, and Automation Safe to Use in 2026?

Generally Safe

Score 98/100

MailPoet – Newsletters, Email Marketing, and Automation has a strong security track record. Known vulnerabilities have been patched promptly.

3 known CVEsLast CVE: Mar 6, 2025Updated 24d ago
Risk Assessment
Assessment pending
Vulnerabilities
3

MailPoet – Newsletters, Email Marketing, and Automation Security Vulnerabilities

CVEs by Year

1 CVE in 2019
2019
1 CVE in 2024
2024
1 CVE in 2025
2025
Patched Has unpatched

Severity Breakdown

Medium
3

3 total CVEs

CVE-2024-12743medium · 4.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

MailPoet <= 5.5.1 - Authenticated (Administrator+) Stored Cross-Site Scripting

Mar 6, 2025 Patched in 5.5.2 (65d)
CVE-2024-10103medium · 4.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

MailPoet <= 5.3.1 - Authenticated (Administrator+) Stored Cross-Site Scripting

Oct 29, 2024 Patched in 5.3.2 (18d)
CVE-2019-11843medium · 6.1Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

MailPoet – emails and newsletters in WordPress <= 3.23.1 - Reflected Cross-Site Scripting via URL parameter

Apr 16, 2019 Patched in 3.23.2 (1743d)
Maintenance & Trust

MailPoet – Newsletters, Email Marketing, and Automation Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedMar 10, 2026
PHP min version7.4
Downloads63.9M

Community Trust

Rating88/100
Number of ratings1,411
Active installs500K
Alternatives

MailPoet – Newsletters, Email Marketing, and Automation Alternatives

Mail Mint – Newsletters, Email Marketing, Automation, WooCommerce Emails, Post Notification, and more

Mail Mint – Newsletters, Email Marketing, Automation, WooCommerce Emails, Post Notification, and more

mail-mint

A
92

Use Mail Mint, the easiest email marketing automation plugin in WordPress to generate leads, send email campaigns, and run email automation workflows.

6K 8 CVEs
Email Subscribers & Newsletters – Email Marketing, Post Notifications & Newsletter Plugin for WordPress

Email Subscribers & Newsletters – Email Marketing, Post Notifications & Newsletter Plugin for WordPress

email-subscribers

B
76

Add subscription forms on the website and send newsletters & automatically send post notification about new blog posts once it gets published.

60K 42 CVEs
weMail: Email Marketing, Email Automation, Newsletters, Subscribers & eCommerce Email Optins

weMail: Email Marketing, Email Automation, Newsletters, Subscribers & eCommerce Email Optins

wemail

A
95

Send email newsletters, automate email marketing with email automation, manage subscribers, eCommerce emails, post notifications & optins with ease

10K 6 CVEs
Chirp – Instant Post Notifications

Chirp – Instant Post Notifications

chirp-instant-post-notifications

A
100

Chirp – Instant Post Notifications is a lightweight notification plugin that automatically notifies subscribers whenever a new post is published.

0 No CVEs
Sender – Newsletter, SMS and Email Marketing Automation for WooCommerce

Sender – Newsletter, SMS and Email Marketing Automation for WooCommerce

sender-net-automated-emails

A
99

Sender is an all-in-one email & SMS marketing platform designed keeping the challenges of ecommerce and small businesses in mind.

5K 2 CVEs
Developer Profile

MailPoet – Newsletters, Email Marketing, and Automation Developer Profile

MailPoet

1 plugin · 500K total installs

78
trust score
Avg Security Score
98/100
Avg Patch Time
609 days
View full developer profile
FAQ

Frequently Asked Questions about MailPoet – Newsletters, Email Marketing, and Automation