WordPress is the Wordpress Foundationβs suite of blogging platforms developed using the PHP language. A cross-site scripting vulnerability exists in Wordpress Zoho CRM Lead Magnet plugin version 1.7.2.4, which stems from a lack of checksum filtering of user-supplied data and output data. An attacker could use this vulnerability to execute JavaScript code on the client side.