Vulnerabilities

CVE-2025-12696

by Fred · 14/12/2025

The HelloLeads CRM Form Shortcode WordPress plugin through 1.0 does not have authorisation and CSRF check when resetting its settings, allowing unauthenticated users to reset them

More information : https://wpscan.com/vulnerability/e552dfc8-c6e1-4605-bc36-30dc4066eaea/

Similar

Tags: Cybersecurity Alert