WordPress Leyka Vulnerabilities

Wordpress Leyka vulnerabilities.

JSON RSS CSV 🔔 Create Alert Trigger

4 July 2025

Path Traversal Vulnerability in Leyka by VaultDweller
CVE-2025-52805
WordPressLeyka7.5HIGH

27 June 2025

Cross-Site Scripting Vulnerability in VaultDweller Leyka Plugin
CVE-2025-53275
WordPressLeyka6.5MEDIUM

16 February 2025

Cross-site Scripting Vulnerability in VaultDweller Leyka Plugin
CVE-2025-26766
WordPressLeyka6.5MEDIUM

11 June 2024

Missing Authorization Vulnerability Affects Leyka from n/a to 3.31.1
CVE-2024-35683
WordPressLeyka5.3MEDIUM

14 May 2024

Privilege Escalation Vulnerability in Leyka
CVE-2023-33327
WordPressLeyka8.8HIGH

22 November 2023

WordPress Leyka Plugin <= 3.29.2 is vulnerable to Cross Site Request Forgery (CSRF)
CVE-2023-27442
WordPressLeyka8.8HIGH

19 September 2023

Leyka < 3.30.4 - Admin+ Stored XSS
CVE-2023-2995
WordpressLeyka👾🟡4.8MEDIUM

13 September 2023

Sensitive Information Exposure in Leyka Plugin for WordPress
CVE-2023-4917
WordPressLeyka5.3MEDIUM

30 August 2023

WordPress Leyka Plugin <= 3.30.1 is vulnerable to Cross Site Scripting (XSS)
CVE-2023-33325
WordPressLeyka7.1HIGH

10 August 2023

WordPress Leyka Plugin <= 3.30.2 is vulnerable to Cross Site Scripting (XSS)
CVE-2023-39314
WordPressLeyka6.1MEDIUM

21 June 2023

WordPress Leyka Plugin <= 3.29.2 is vulnerable to Cross Site Scripting (XSS)
CVE-2023-27450
WordPressLeyka7.1HIGH