CVE-2025-31460

Name of the Vulnerable Software and Affected Versions danielmuldernl OmniLeads Scripts and Tags Manager versions 1.3 and earlier

Description The issue is a Cross-Site Request Forgery (CSRF) vulnerability that allows Stored XSS. This means an attacker can execute malicious scripts on the victim's browser, potentially leading to unauthorized actions.

Recommendations For versions 1.3 and earlier, update to a version that includes a fix for this issue, as no specific workaround is provided for these versions. As a temporary workaround, consider restricting access to sensitive features until a patch is available.