cleantalk
Vulnerabilities and Security Researches

Privacy Policy Generator, Terms & Conditions Generator WordPress Plugin : WPLegalPages, CVE-2015-9428

CVE, Research URL

CVE-2015-9428

Home page URL

Security reports for Privacy Policy Generator, Terms & Conditions Generator WordPress Plugin : WPLegalPages

Application

Privacy Policy Generator, Terms & Conditions Generator WordPress Plugin : WPLegalPages

Published on
Sep 26, 2019
Research Description
The wplegalpages plugin before 1.1 for WordPress has CSRF with resultant XSS via wp-admin/admin.php?page=legal-pages lp-domain-name, lp-business-name, lp-phone, lp-street, lp-city-state, lp-country, lp-email, lp-address, or lp-niche parameters.
Affected versions
max 1.1.
Status
vulnerable
Previous vulnerability researches
Privacy Policy Generator, Terms & Conditions Generator WordPress Plugin : WPLegalPages (CVE-2025-67974) , Feb 28, 2026
Privacy Policy Generator, Terms & Conditions Generator WordPress Plugin : WPLegalPages (CVE-2025-8565) , Oct 11, 2025
Privacy Policy Generator, Terms & Conditions Generator WordPress Plugin : WPLegalPages (CVE-2021-25106) , Jun 06, 2024
Privacy Policy Generator, Terms & Conditions Generator WordPress Plugin : WPLegalPages (CVE-2025-11816) , Nov 10, 2025
Privacy Policy Generator, Terms & Conditions Generator WordPress Plugin : WPLegalPages (CVE-2015-9428) , Jun 06, 2024
New vulnerability
Contact Form Builder Plugin: Multi Step Contact Form, Payment Form, Custom Contact Form Plugin by Bit Form (CVE-2026-25418) , Feb 28, 2026
Image Photo Gallery Final Tiles Grid (CVE-2026-25375) , Feb 28, 2026
Share This Image (CVE-2026-25010) , Feb 28, 2026
Bold Page Builder (CVE-2026-25451) , Feb 28, 2026
Bold Page Builder (CVE-2025-13463) , Feb 28, 2026