8 matches found
CVE-2025-49316
CVE-2025-49316 : WordPress WP2LEADS plugin
CVE-2024-31375
Missing Authorization vulnerability in Saleswonder Team: Tobias WP2LEADS wp2leads.This issue affects WP2LEADS: from n/a through = 3.2.7...
CVE-2025-32922 WordPress WP2LEADS plugin <= 3.5.0 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in Saleswonder Team: Tobias WP2LEADS wp2leads allows Stored XSS.This issue affects WP2LEADS: from n/a through = 3.5.0...
CVE-2025-30827
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Saleswonder Team: Tobias WP2LEADS wp2leads allows Reflected XSS.This issue affects WP2LEADS: from n/a through = 3.4.5...
CVE-2025-24565
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Saleswonder Team: Tobias WP2LEADS wp2leads allows Reflected XSS.This issue affects WP2LEADS: from n/a through = 3.3.3...
CVE-2025-24565
CVE-2025-24565 affects the WordPress WP2LEADS plugin. Affected: versions prior to 3.3.3. Vulnerability: Reflected Cross-Site Scripting caused by improper neutralization of inputs during web page generation. Impact per sources: confidentiality, integrity, and availability may be affected (per CVSS...
CVE-2024-56065
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Saleswonder Team: Tobias WP2LEADS wp2leads allows Reflected XSS.This issue affects WP2LEADS: from n/a through = 3.4.2...
CVE-2024-56065
CVE-2024-56065 — Reflected Cross-Site Scripting in WP2LEADS (Saleswonder.biz Team WP2LEADS). Affected: WordPress WP2LEADS up to version 3.4.2; root cause: improper input neutralization during web page generation, enabling reflected XSS. Impact per sources indicates potential user interaction with...