Info Published: Dec 14, 2025

CVE-2025-12696

0 CVSS Score Info

Export:

Link copied!

Description

The HelloLeads CRM Form Shortcode WordPress plugin through 1.0 does not have authorisation and CSRF check when resetting its settings, allowing unauthenticated users to reset them

References & External Links

https://wpscan.com/vulnerability/e552dfc8-c6e1-4605-bc36-30dc4066eaea/

External Resources

NVD Official Record Exploit-DB Search Exploits CVE Details Statistics GitHub PoC / Tools X / Twitter Discussions Google Search More

← Back to CVE Tracker