Vcita Crm And Lead Management By Vcita
5 CVEs affecting Vcita Crm And Lead Management By Vcita. Latest disclosed: 2025-07-22. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-5240 | Medium | 6.4 | 2025-07-22 | The CRM and Lead Management by vcita plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘type’ parameter in all versions up to, and incl… |
CVE-2024-13702 | Medium | 6.4 | 2025-03-26 | The CRM and Lead Management by vcita plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'vCitaMeetingScheduler' and 'vCitaSched… |
CVE-2023-2404 | Medium | 6.4 | 2023-06-03 | The CRM and Lead Management by vcita plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'email' parameter in versions up to, and includi… |
CVE-2023-2405 | Medium | 6.1 | 2023-06-03 | The CRM and Lead Management by vcita plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.7.0. This is due to m… |
CVE-2024-13703 | Medium | 4.3 | 2025-03-13 | The CRM and Lead Management by vcita plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the vcita_aja… |