Lucene search
K

9 matches found

RedhatCVE
RedhatCVE
added 2026/01/07 9:11 a.m.7 views

CVE-2025-1039

The Lenix Elementor Leads addon plugin for WordPress is vulnerable to Stored Cross-Site Scripting via a URL form field in all versions up to, and including, 1.8.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary w...

7.2CVSS6AI score0.00408EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-4595

Malicious code in bioql PyPI...

7.2CVSS9.1AI score0.00408EPSS
Exploits1References4
OSV
OSV
added 2025/02/20 1:15 p.m.4 views

CVE-2025-1039

The Lenix Elementor Leads addon plugin for WordPress is vulnerable to Stored Cross-Site Scripting via a URL form field in all versions up to, and including, 1.8.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary w...

6.1CVSS7.4AI score0.00408EPSS
Exploits1References3
NVD
NVD
added 2025/02/20 1:15 p.m.15 views

CVE-2025-1039

The Lenix Elementor Leads addon plugin for WordPress is vulnerable to Stored Cross-Site Scripting via a URL form field in all versions up to, and including, 1.8.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary w...

7.2CVSS0.00408EPSS
Exploits1References3
CVE
CVE
added 2025/02/20 12:41 p.m.86 views

CVE-2025-1039

CVE-2025-1039 : Lenix Elementor Leads addon for WordPress suffers stored XSS via a URL form field in versions up to 1.8.2 due to insufficient input sanitization and output escaping, enabling unauthenticated attackers to inject scripts on pages viewed by users. Red Hat confirms the same issue unde...

7.2CVSS6.2AI score0.00408EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/02/20 12:41 p.m.9 views

CVE-2025-1039 Lenix Elementor Leads addon <= 1.8.2 - Unauthenticated Stored Cross-Site Scripting via URL Form Field

The Lenix Elementor Leads addon plugin for WordPress is vulnerable to Stored Cross-Site Scripting via a URL form field in all versions up to, and including, 1.8.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary w...

7.2CVSS6.2AI score0.00408EPSS
Exploits1References2
Patchstack
Patchstack
added 2025/02/20 8:31 a.m.5 views

WordPress Lenix Elementor Leads addon plugin <= 1.8.2 - Unauthenticated Stored Cross-Site Scripting via URL Form Field vulnerability

Unauthenticated Stored Cross-Site Scripting via URL Form Field vulnerability discovered by Webbernaut in WordPress Plugin Lenix Elementor Leads addon versions = 1.8.2...

7.2CVSS5.8AI score0.00408EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/02/20 12:0 a.m.5 views

PT-2025-7486 · WordPress · Lenix Elementor Leads

Name of the Vulnerable Software and Affected Versions: Lenix Elementor Leads addon plugin for WordPress versions up to, and including, 1.8.2 Description: The Lenix Elementor Leads addon plugin for WordPress is vulnerable to Stored Cross-Site Scripting via a URL form field due to insufficient inpu...

7.2CVSS8.1AI score0.00408EPSS
Exploits1References10
CNNVD
CNNVD
added 2025/02/20 12:0 a.m.5 views

WordPress plugin Lenix Elementor Leads 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exist...

7.2CVSS8.7AI score0.00408EPSS
Exploits1References4
Rows per page
Query Builder