CVE-2023-45833

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in LeadSquared Suite plugin = 0.7.4 versions...

EUVD-2023-50103

Malicious code in bioql PyPI...

EUVD-2023-49368

Malicious code in bioql PyPI...

CVE-2023-45047

Cross-Site Request Forgery CSRF vulnerability in LeadSquared, Inc LeadSquared Suite plugin = 0.7.4 versions...

LeadSquared Suite <= 0.7.4 - Admin+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the admin role and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

CVE-2023-45833

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in LeadSquared Suite plugin = 0.7.4 versions...

CVE-2023-45833

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in LeadSquared Suite plugin = 0.7.4 versions...

Cross site scripting

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in LeadSquared Suite plugin = 0.7.4 versions...

WordPress Plugin LeadSquared Suite Cross-Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerability...

CVE-2023-45833

CVE-2023-45833: Authenticated (admin+) Stored XSS in LeadSquared Suite WordPress plugin (

CVE-2023-45833 WordPress LeadSquared Suite Plugin <= 0.7.4 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in LeadSquared Suite plugin = 0.7.4 versions...

CVE-2023-45833 WordPress LeadSquared Suite Plugin <= 0.7.4 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in LeadSquared Suite plugin = 0.7.4 versions...

PT-2023-29720 · Unknown · Leadsquared Suite

Name of the Vulnerable Software and Affected Versions: LeadSquared Suite plugin versions 0.7.4 and earlier Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability that affects authenticated administrators. This vulnerability allows for malicious scripts to be stored o...

WordPress LeadSquared Suite Plugin <= 0.7.4 is vulnerable to Cross Site Scripting (XSS)

Software LeadSquared Suite Type Plugin Vulnerable versions = 0.7.4 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-45833 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 5d55f19f88b6 Credits Rio Darmawan Required...

CVE-2023-45047

Cross-Site Request Forgery CSRF vulnerability in LeadSquared, Inc LeadSquared Suite plugin = 0.7.4 versions...

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in LeadSquared, Inc LeadSquared Suite plugin = 0.7.4 versions...

CVE-2023-45047

LeadSquared Suite WordPress plugin vulnerable to CSRF (CVE-2023-45047) in versions &lt;= 0.7.4. Root cause: Cross-Site Request Forgery that could enable unauthenticated or unintended actions within affected sites. Open sources consistently reference LeadSquared Suite

CVE-2023-45047 WordPress LeadSquared Suite Plugin <= 0.7.4 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in LeadSquared, Inc LeadSquared Suite plugin = 0.7.4 versions...

CVE-2023-45047 WordPress LeadSquared Suite Plugin <= 0.7.4 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in LeadSquared, Inc LeadSquared Suite plugin = 0.7.4 versions...

LeadSquared Suite <= 0.7.4 - CSRF

Description The plugin does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks...