Description

WordPress Plugin WordPress Leads is prone to an unspecified vulnerability. No available information exists regarding this issue and it's impact on a vulnerable website. WordPress Plugin WordPress Leads version 1.6.8 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 1.7.0 or latest

References

https://wordpress.org/plugins/leads/changelog/

Related Vulnerabilities

phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-14619)

WordPress Plugin Google Analytics Dashboard Plugin for WordPress by MonsterInsights 404 Error Page Cross-Site Scripting (3.2.4)

SharePoint Out-of-bounds Write Vulnerability (CVE-2018-0792)

Drupal Core 9.3.x Multiple Vulnerabilities (9.3.0 - 9.3.7)

WordPress 5.2.x PHP Object Injection (5.2 - 5.2.10)

Severity

High

Tags

Missing Update