CVE-2025-5240 | vcita CRM and Lead Management Plugin up to 2.7.5 on WordPress Type cross site scripting

Inserito da Angelo Barbosa | Lug 21, 2025 | CVE

A vulnerability was found in vcita CRM and Lead Management Plugin up to 2.7.5 on WordPress. It has been declared as problematic. This vulnerability affects unknown code. The manipulation of the argument Type leads to cross site scripting.

This vulnerability was named CVE-2025-5240. The attack can be initiated remotely. There is no exploit available.

CVE-2025-5240 | vcita CRM and Lead Management Plugin up to 2.7.5 on WordPress Type cross site scripting

Post correlati

CVE-2023-6836 | WSO2 API Manager xml external entity reference

CVE-2024-2572 | SourceCodester Employee Task Management System 1.0 /task-details.php redirect

CVE-2024-37828 | Vermeg Agile Reporter 23.2.1 Broadcast Message Module cross site scripting

CVE-2023-42505 | Apache Superset up to 2.x Database Connection Metadata information disclosure