CVE-2025-52805 WordPress Leyka <= 3.31.9 - Local File Inclusion Vulnerability

Path Traversal vulnerability in VaultDweller Leyka allows PHP Local File Inclusion. This issue affects Leyka: from n/a through 3.31.9...

CVE-2024-49252

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in VaultDweller Leyka leyka.This issue affects Leyka: from n/a through = 3.31.6...

CVE-2023-33327

Improper Privilege Management vulnerability in Teplitsa of social technologies Leyka allows Privilege Escalation.This issue affects Leyka: from n/a through 3.30.2...

CVE-2025-26766

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in VaultDweller Leyka leyka allows Stored XSS.This issue affects Leyka: from n/a through = 3.31.8...

CVE-2025-26766

CVE-2025-26766 (Leyka WordPress plugin) is a stored XSS in Leyka where the vulnerability arises from improper neutralization of input during web page generation. Affected: Leyka versions up to and including 3.31.8. Impact is described as cross-site scripting with stored payloads; the CVSS vector ...