- Mar 13, 2023
- 1 min read

[WordPress Leyka Plugin](versions 3.29.2 and older) Vulnerability

Updated: Mar 14, 2023

[WordPress Leyka Plugin](versions 3.29.2 and older) Vulnerability to Cross-Site Scripting (XSS)

Importance (CVSS3.0)

★★★★★★★☆☆☆ 7.1/ 10　 - High

Details

A Cross-Site Scripting(XSS) vulnerability was discovered in WordPress Leyka Plugin.

This vulnerability may allow malicious attackers to inject fraudulent scripts such as redirect, ads, and other HTML payload. This may be executed when guests visit the website.

This vulnerability hasn’t been fixed yet.

Solutions

There is no patched version available.

Source

CVE-2023-27442

We provide information about critical vulnerabilities of WordPress for people who are using or are considering using Wordpress for their projects.

“[WordPress Leyka Plugin](versions 3.29.2 and older) Vulnerability to Cross-Site Scripting (XSS) ”, by WS Security is licensed under CC BY 4.0.

Enterprise
Server Infrastructure
Management

Posts

[WordPress Leyka Plugin](versions 3.29.2 and older) Vulnerability

[WordPress Leyka Plugin](versions 3.29.2 and older) Vulnerability to Cross-Site Scripting (XSS)

Recent Posts

Beyond GTA Inc.

Services

Policies

Beyond GTA Inc.
7030 Woodbine Ave., Markham, ON, L3R 6G2, Canada

Copyright 2021 Beyond GTA Inc.