Leenk: >> Leenk.me Security Vulnerabilities
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Lew Ayotte leenk.me leenkme allows Reflected XSS.This issue affects leenk.me: from n/a through <= 2.16.0.
CVSS Score
6.1
EPSS Score
0.004
Published
2024-10-29
The leenkme plugin before 2.6.0 for WordPress has stored XSS via facebook_message, facebook_linkname, facebook_caption, facebook_description, default_image, or _wp_http_referer.
CVSS Score
6.1
EPSS Score
0.002
Published
2019-09-17
The leenkme plugin before 2.6.0 for WordPress has wp-admin/admin.php?page=leenkme_facebook CSRF.
CVSS Score
8.8
EPSS Score
0.002
Published
2019-09-17