Leenk: >> Leenk.me >> 1.1.7 Security Vulnerabilities
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Lew Ayotte leenk.Me allows Reflected XSS.This issue affects leenk.Me: from n/a through 2.16.0.
CVSS Score
7.1
EPSS Score
0.001
Published
2024-10-29
The leenkme plugin before 2.6.0 for WordPress has stored XSS via facebook_message, facebook_linkname, facebook_caption, facebook_description, default_image, or _wp_http_referer.
CVSS Score
6.1
EPSS Score
0.002
Published
2019-09-17
The leenkme plugin before 2.6.0 for WordPress has wp-admin/admin.php?page=leenkme_facebook CSRF.
CVSS Score
8.8
EPSS Score
0.002
Published
2019-09-17