Lucene search
+L

4 matches found

Patchstack
Patchstack
added 2026/03/30 12:47 p.m.8 views

WordPress LeadConnector plugin < 3.0.22 - Unauthenticated Rest Call vulnerability

Unauthenticated Rest Call vulnerability discovered by yiğit ibrahim sağlam in WordPress Plugin LeadConnector versions 3.0.22...

5.3CVSS5.9AI score0.00645EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/19 8:27 a.m.5 views

CVE-2026-25441 WordPress LeadConnector plugin <= 3.0.21 - Broken Access Control vulnerability

Missing Authorization vulnerability in varunvairavanlc LeadConnector leadconnector allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects LeadConnector: from n/a through = 3.0.21...

5.3CVSS5.1AI score0.00282EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/27 10:55 a.m.27 views

CVE-2025-30893 WordPress LeadConnector plugin <= 3.0.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in LeadConnector LeadConnector leadconnector allows DOM-Based XSS.This issue affects LeadConnector: from n/a through = 3.0.2...

6.5CVSS0.00271EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/04/30 12:0 a.m.12 views

WordPress LeadConnector Plugin <= 1.7 is vulnerable to Broken Access Control

Software LeadConnector Type Plugin Vulnerable versions = 1.7 Fixed in 1.8 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-1371 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 2445a52c5c7c Credits Krzysztof Zając Required...

6.5CVSS6.4AI score0.00587EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder