HIGH
Yeeaddons
CVE published 2026-06-15
CVE-2026-39498
CVE-2026-39498 is a HIGH-severity vulnerability in the YayMail plugin, affecting versions up to 4.3.3. This vulnerability allows for PHP Object Injection, potentially enabling attackers to execute arbitrary code on the affected system. The vulnerability has a CVSS score of 7.2 and requires high privileges to exploit.