| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-24595 | WordPress Zoho CRM Lead Magnet plugin <= 1.8.1.9 - Broken Access Control vulnerability | zohocrm | Zoho CRM Lead Magnet | Medium | 5.4 | 2026-01-23 14:29:02 | Deep Dive |
| CVE-2025-49028 | WordPress Zoho ZeptoMail plugin <= 3.3.1 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability | Zoho Mail | Zoho ZeptoMail | High | 7.1 | 2025-12-31 09:05:03 | Deep Dive |
| CVE-2025-60091 | WordPress WP Gravity Forms Zoho CRM and Bigin plugin <= 1.2.9 - Deserialization of untrusted data vulnerability | CRM Perks | WP Gravity Forms Zoho CRM and Bigin | - | - | 2025-12-18 07:22:09 | Deep Dive |
| CVE-2025-62981 | WordPress WP Gravity Forms Zoho CRM and Bigin plugin <= 1.2.8 - Open Redirection vulnerability | CRM Perks | WP Gravity Forms Zoho CRM and Bigin | Medium | 4.7 | 2025-10-27 01:34:20 | Deep Dive |
| CVE-2025-60169 | WordPress W3SCloud Contact Form 7 to Zoho CRM plugin <= 3.2 - Cross Site Request Forgery (CSRF) vulnerability | W3S Cloud Technology | W3SCloud Contact Form 7 to Zoho CRM | High | 7.1 | 2025-09-26 08:32:05 | Deep Dive |
| CVE-2025-59568 | WordPress Zoho Flow Plugin <= 2.14.1 - Cross Site Request Forgery (CSRF) Vulnerability | Zoho Flow | Zoho Flow | Medium | 4.3 | 2025-09-22 18:25:59 | Deep Dive |
| CVE-2025-57963 | WordPress Zoho Billing Plugin <= 4.1 - Cross Site Scripting (XSS) Vulnerability | Zoho Subscriptions | Zoho Billing | Medium | 6.5 | 2025-09-22 18:24:42 | Deep Dive |
| CVE-2025-8479 | Zoho Flow <= 2.14.1 - Cross-Site Request Forgery | zohoflow | Zoho Flow – Integrate 100+ plugins with 1000+ business apps, no-code workflow automation | Medium | 4.3 | 2025-09-11 06:43:51 | Deep Dive |
| CVE-2025-49330 | WordPress Integration for Contact Form 7 and Zoho CRM, Bigin plugin <= 1.3.0 - PHP Object Injection Vulnerability | CRM Perks | Integration for Contact Form 7 and Zoho CRM, Bigin | Critical | 9.8 | 2025-06-17 15:01:23 | Deep Dive |
| CVE-2025-47644 | WordPress Integrations of Zoho CRM with Elementor form plugin <= 1.0.8 - Open Redirection Vulnerability | formsintegrations | Integrations of Zoho CRM with Elementor form | Medium | 4.7 | 2025-05-07 14:20:43 | Deep Dive |
| CVE-2025-46453 | WordPress Zoho Creator Forms <= 1.0.5 - Cross Site Scripting (XSS) Vulnerability | CreatorTeam | Zoho Creator Forms | Medium | 6.5 | 2025-04-24 16:09:07 | Deep Dive |
| CVE-2025-31821 | WordPress Integration of Zoho CRM and Contact Form 7 plugin <= 1.0.6 - Open Redirection Vulnerability | formsintegrations | Integration of Zoho CRM and Contact Form 7 | Medium | 4.7 | 2025-04-01 14:51:46 | Deep Dive |
| CVE-2025-31408 | WordPress Zoho Flow plugin <= 2.13.3 - Broken Access Control vulnerability | Zoho Flow | Zoho Flow | Medium | 4.3 | 2025-04-01 13:07:54 | Deep Dive |
| CVE-2025-30900 | WordPress Zoho Billing – Embed Payment Form plugin <= 4.0 - Stored Cross Site Scripting (XSS) vulnerability | Zoho Subscriptions | Zoho Billing – Embed Payment Form | Medium | 6.5 | 2025-03-27 10:55:50 | Deep Dive |
| CVE-2025-30197 | Jenkins Zoho QEngine Plugin 安全漏洞 | Jenkins Project | Jenkins Zoho QEngine Plugin | 低危 | - | 2025-03-19 15:38:13 | Deep Dive |
| CVE-2024-49297 | WordPress Zoho CRM Lead Magnet plugin <= 1.7.9.7 - SQL Injection vulnerability | zohocrm | Zoho CRM Lead Magnet | High | 8.5 | 2024-10-17 17:29:58 | Deep Dive |
| CVE-2022-4974 | Freemius SDK <= 2.4.2 - Missing Authorization Checks | dashlabsltd | YASR – Yet Another Star Rating Plugin for WordPress | Medium | 6.3 | 2024-10-16 06:43:30 | Deep Dive |
| CVE-2024-47334 | WordPress Zoho Flow for WordPress plugin <= 2.7.1 - SQL Injection vulnerability | Zoho Flow | Zoho Flow | High | 7.6 | 2024-10-09 10:42:33 | Deep Dive |
| CVE-2024-47633 | WordPress Zoho forms plugin <= 4.0 - Cross Site Scripting (XSS) vulnerability | Zoho Forms | Zoho Forms | Medium | 6.5 | 2024-10-05 13:08:36 | Deep Dive |
| CVE-2024-38752 | WordPress Zoho Campaigns plugin <= 2.0.8 - Cross Site Scripting (XSS) vulnerability | Zoho Campaigns | Zoho Campaigns | Medium | 6.5 | 2024-08-13 10:25:42 | Deep Dive |