Hubspotdev Hubspot All-in-one Marketing – Forms, Popups, Live Chat
2 CVEs affecting Hubspotdev Hubspot All-in-one Marketing – Forms, Popups, Live Chat. Latest disclosed: 2026-04-24. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-5879 | Medium | 6.4 | 2024-08-30 | The HubSpot – CRM, Email Marketing, Live Chat, Forms & Analytics plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'url' attribute of t… |
CVE-2025-11762 | Medium | 4.3 | 2026-04-24 | The HubSpot All-In-One Marketing - Forms, Popups, Live Chat plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and inc… |