FluentCRM – Email Newsletter, Automation, Email Marketing, Email Campaigns, Optins, Leads, and CRM Solution — Vulnerabilities & Security Advisories 2

All 2 CVE vulnerabilities found in FluentCRM – Email Newsletter, Automation, Email Marketing, Email Campaigns, Optins, Leads, and CRM Solution, with AI-generated Chinese analysis, references, and POCs.

Vendor: techjewel

CVE ID	Title	CVSS	Severity	Published
CVE-2025-12935	FluentCRM - Marketing Automation For WordPress <= 2.9.84 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'fluentcrm_content' Shortcode CWE-79	6.4	Medium	2025-11-21
CVE-2023-1430	FluentCRM - Marketing Automation For WordPress <= 2.8.01 - Insufficient Use of Hash as Authorization Control CWE-759	6.5	Medium	2023-06-09

All 2 known CVE vulnerabilities affecting FluentCRM – Email Newsletter, Automation, Email Marketing, Email Campaigns, Optins, Leads, and CRM Solution with full Chinese analysis, references, and POCs where available.

Goal Reached Thanks to every supporter — we hit 100%!

FluentCRM – Email Newsletter, Automation, Email Marketing, Email Campaigns, Optins, Leads, and CRM Solution — Vulnerabilities & Security Advisories 2