Kamleshyadav Wp Lead Capturing Pages vulnerabilities
4 known vulnerabilities affecting kamleshyadav/wp_lead_capturing_pages.
Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH2
Vulnerabilities
Page 1 of 1
CVE-2025-49055P2CRITICALCVSS 9.3≤ 2.52026-01-22
CVE-2025-49055 [CRITICAL] CWE-89 CVE-2025-49055: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in kamleshyadav WP Lead Capturing Pages wp-lead-capture allows Blind SQL Injection.This issue affects WP Lead Capturing Pages: from n/a through <= 2.5.
nvd
CVE-2025-31424P2CRITICALCVSS 9.3≤ 2.62025-06-09
CVE-2025-31424 [CRITICAL] CWE-89 CVE-2025-31424: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in kamleshyadav WP Lead Capturing Pages leadcapture allows Blind SQL Injection.This issue affects WP Lead Capturing Pages: from n/a through < 2.6.
nvd
CVE-2025-49050P3HIGHCVSS 8.5≤ 2.52026-01-22
CVE-2025-49050 [HIGH] CWE-89 CVE-2025-49050: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in kamleshyadav WP Lead Capturing Pages wp-lead-capture allows Blind SQL Injection.This issue affects WP Lead Capturing Pages: from n/a through <= 2.5.
nvd
CVE-2025-31425P3HIGHCVSS 7.5≤ 2.62025-08-14
CVE-2025-31425 [HIGH] CWE-862 CVE-2025-31425: Missing Authorization vulnerability in kamleshyadav WP Lead Capturing Pages leadcapture allows Explo
Missing Authorization vulnerability in kamleshyadav WP Lead Capturing Pages leadcapture allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Lead Capturing Pages: from n/a through < 2.6.
nvd