Lead Magnet
1 CVEs
product
Monthly
The Zoho CRM Lead Magnet plugin 1.6.9.1 for WordPress allows XSS via module, EditShortcode, or LayoutName. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.
XSS
Zoho
WordPress
Lead Magnet
NVD
GitHub
CVSS 3.1
5.4
EPSS
1.1%
EPSS 1%
CVSS 5.4
MEDIUM
POC
This Month
The Zoho CRM Lead Magnet plugin 1.6.9.1 for WordPress allows XSS via module, EditShortcode, or LayoutName. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.
XSS
Zoho
WordPress
+1
NVD
GitHub