CVE-2026-2498 | WP Social Meta Plugin up to 1.0.1 on WordPress Setting cross site scripting

Inserito da Angelo Barbosa | Feb 25, 2026 | CVE

A vulnerability categorized as problematic has been discovered in WP Social Meta Plugin up to 1.0.1 on WordPress. This vulnerability affects unknown code of the component Setting Handler. Such manipulation leads to cross site scripting.

This vulnerability is listed as CVE-2026-2498. The attack may be performed from remote. There is no available exploit.

CVE-2026-2498 | WP Social Meta Plugin up to 1.0.1 on WordPress Setting cross site scripting

Post correlati

CVE-2025-0948 | itsourcecode Tailoring Management System 1.0 incview.php incid sql injection

CVE-2024-55565 | Nanoid up to 3.3.7/5.0.8 Privilege Escalation

CVE-2024-1382 | Restaurant Reservations Plugin up to 1.9 on WordPress path traversal

CVE-2023-50979 | Crypto++ up to 8.9.0 PKCS#1 Padding observable behavioral discrepancy (Issue 1247)