CVE-2026-28132 | villatheme WooCommerce Photo Reviews Plugin up to 1.4.4 on WordPress cross site scripting

Inserito da Angelo Barbosa | Feb 26, 2026 | CVE

A vulnerability, which was classified as problematic, has been found in villatheme WooCommerce Photo Reviews Plugin up to 1.4.4 on WordPress. This affects an unknown function. This manipulation causes basic cross site scripting.

This vulnerability is handled as CVE-2026-28132. The attack can be initiated remotely. There is not any exploit available.

CVE-2026-28132 | villatheme WooCommerce Photo Reviews Plugin up to 1.4.4 on WordPress cross site scripting

Post correlati

CVE-2024-5135 | PHPGurukul Directory Management System 1.0 /admin/index.php username sql injection

CVE-2024-23726 | Ubee DDW365 XCNDDW365/DDW366 XCNDXW3WB WPA2-PSK default credentials

CVE-2024-10991 | Codezips Hospital Appointment System 1.0 /editBranchResult.php ID sql injection

CVE-2024-8167 | code-projects Job Portal 1.0 /forget.php email/mobile sql injection