cleantalk
Vulnerabilities and Security Researches

LeadConnector, CVE-2026-25441

CVE, Research URL

CVE-2026-25441

Home page URL

Security reports for LeadConnector

Application

LeadConnector

Published on
Feb 19, 2026
Research Description
Missing Authorization vulnerability in LeadConnector LeadConnector leadconnector allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects LeadConnector: from n/a through <= 3.0.21.
Affected versions
max 3.0.21.
Status
vulnerable
Previous vulnerability researches
BoomDevs WordPress Coming Soon Plugin (CVE-2025-62083) , Jan 10, 2026
New vulnerability
YayCurrency &#8211; WooCommerce Multi-Currency Switcher (CVE-2025-67994) , Feb 27, 2026
Library Viewer (CVE-2025-15396) , Feb 27, 2026
Directorist &#8211; WordPress Business Directory Plugin with Classified Ads Listings (CVE-2025-68069) , Feb 27, 2026
WCFM Membership &#8211; WooCommerce Memberships for Multivendor Marketplace (CVE-2025-15147) , Feb 27, 2026
Better Search &#8211; Relevant search results for WordPress (CVE-2026-24938) , Feb 27, 2026