cleantalk
Vulnerabilities and Security Researches

WP2LEADS | WordPress und KlickTipp einfach verbinden – WooCommerce und KlickTipp einfach verbinden, CVE-2025-32922

CVE, Research URL

CVE-2025-32922

Home page URL

Security reports for WP2LEADS | WordPress und KlickTipp einfach verbinden – WooCommerce und KlickTipp einfach verbinden

Application

WP2LEADS | WordPress und KlickTipp einfach verbinden – WooCommerce und KlickTipp einfach verbinden

Published on
May 16, 2025
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in Tobias WP2LEADS allows Stored XSS.This issue affects WP2LEADS: from n/a through 3.5.0.
Affected versions
Min -, max 3.5.0.
Status
vulnerable
Previous vulnerability researches
JSFiddle Shortcode (CVE-2024-10818) , May 17, 2025
New vulnerability
EventON (CVE-2025-48116) , May 18, 2025
Import Export For WooCommerce (CVE-2025-48144) , May 18, 2025
ValidateCertify – Free (CVE-2025-48115) , May 18, 2025
Contact Form builder with drag & drop for WordPress – Kali Forms (CVE-2025-3201) , May 18, 2025
Uncanny Toolkit for LearnDash (CVE-2025-48080) , May 18, 2025