VYPR

leenkme

by WordPress

CVEs (3)

  • CVE-2016-10989HigSep 17, 2019
    risk 0.57cvss 8.8epss 0.01

    The leenkme plugin before 2.6.0 for WordPress has wp-admin/admin.php?page=leenkme_facebook CSRF.

  • CVE-2024-49661HigOct 29, 2024
    risk 0.46cvss 7.1epss 0.00

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Lew Ayotte leenk.me leenkme allows Reflected XSS.This issue affects leenk.me: from n/a through <= 2.16.0.

  • CVE-2016-10988MedSep 17, 2019
    risk 0.40cvss 6.1epss 0.01

    The leenkme plugin before 2.6.0 for WordPress has stored XSS via facebook_message, facebook_linkname, facebook_caption, facebook_description, default_image, or _wp_http_referer.