Security News Hackers Exploit Gravity SMTP WordPress Plugin Bug to Expose API Keys TheHackerNews Daniel Bender 20 Jun 2026 Share Attackers are exploiting CVE-2026-4020 in Gravity SMTP to leak API keys, OAuth tokens, and system data from WordPress sites.
