cleantalk
Vulnerabilities and Security Researches

Responsive Contact Form Builder & Lead Generation Plugin, CVE-2026-32532

CVE, Research URL

CVE-2026-32532

Home page URL

Security reports for Responsive Contact Form Builder & Lead Generation Plugin

Application

Responsive Contact Form Builder & Lead Generation Plugin

Published on
Mar 25, 2026
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ThemeHunk Contact Form & Lead Form Elementor Builder lead-form-builder allows Stored XSS.This issue affects Contact Form & Lead Form Elementor Builder: from n/a through <= 2.0.1.
Affected versions
max 2.0.1.
Status
vulnerable
Previous vulnerability researches
Wireless Butler (CVE-2025-26997) , Apr 15, 2025
New vulnerability
Co-Authors, Multiple Authors and Guest Authors in an Author Box with PublishPress Authors (CVE-2026-25309) , Mar 29, 2026
Widget Wrangler (CVE-2026-25447) , Mar 29, 2026
Astra Bulk Edit (CVE-2026-32431) , Mar 29, 2026
JS Help Desk &#8211; Best Help Desk &amp; Support Plugin (CVE-2026-32535) , Mar 29, 2026
JS Help Desk &#8211; Best Help Desk &amp; Support Plugin (CVE-2026-32534) , Mar 29, 2026