A vulnerability marked as problematic has been reported in Zoho ManageEngine Mail Plugin up to 1.6.1 on WordPress. This impacts an unknown function. Performing a manipulation results in cross-site request forgery. This vulnerability is cataloged as CVE-2026-8174 . It is possible to initiate the attack remotely. There is no exploit available. It is suggested to upgrade the affected component.