WordPress HelloLeads CRM Form Shortcode plugin missing authorization vulnerability

WordPress HelloLeads CRM Form Shortcode plugin is a WordPress plugin with integrated Customer Relationship Management CRM functionality that allows users to embed CRM forms and marketing tools on their websites through shortcodes. A lack of authorization vulnerability exists in the WordPress...

WordPress HelloLeads CRM Form Shortcode plugin <= 1.0 - Unauthenticated Settings Reset vulnerability

Unauthenticated Settings Reset vulnerability discovered by Khaled Alenazi Nxploited in WordPress Plugin HelloLeads CRM Form Shortcode versions = 1.0...

CVE-2025-12696

The HelloLeads CRM Form Shortcode WordPress plugin through 1.0 does not have authorisation and CSRF check when resetting its settings, allowing unauthenticated users to reset them...

CVE-2025-12696

The HelloLeads CRM Form Shortcode WordPress plugin through 1.0 does not have authorisation and CSRF check when resetting its settings, allowing unauthenticated users to reset them...

CVE-2025-12696 HelloLeads CRM Form Shortcode <= 1.0 - Unauthenticated Settings Reset

The HelloLeads CRM Form Shortcode WordPress plugin through 1.0 does not have authorisation and CSRF check when resetting its settings, allowing unauthenticated users to reset them...

CVE-2025-12696

CVE-2025-12696 affects the WordPress HelloLeads CRM Form Shortcode plugin (versions

WordPress plugin HelloLeads CRM Form Shortcode 安全漏洞

WordPress HelloLeads CRM Form Shortcode plugin is a WordPress plugin with integrated Customer Relationship Management CRM functionality that allows users to embed CRM forms and marketing tools on their websites through shortcodes. A lack of authorization vulnerability exists in the WordPress...

PT-2025-51149

The HelloLeads CRM Form Shortcode WordPress plugin through 1.0 does not have authorisation and CSRF check when resetting its settings, allowing unauthenticated users to reset them...