CVE-2026-2501 | waianaeboy702 Ed’s Social Share Plugin up to 2.0 on WordPress Shortcode social_share cross site scripting

Inserito da Angelo Barbosa | Mar 21, 2026 | CVE

A vulnerability has been found in waianaeboy702 Ed’s Social Share Plugin up to 2.0 on WordPress and classified as problematic. The affected element is the function social_share of the component Shortcode Handler. Performing a manipulation results in cross site scripting.

This vulnerability is known as CVE-2026-2501. Remote exploitation of the attack is possible. No exploit is available.

The affected component should be upgraded.

CVE-2026-2501 | waianaeboy702 Ed’s Social Share Plugin up to 2.0 on WordPress Shortcode social_share cross site scripting

Post correlati

CVE-2024-44306 | Apple macOS up to 14.5 buffer overflow

CVE-2025-14245 | IdeaCMS up to 1.8 Coupon.php whereRaw params sql injection

CVE-2024-56689 | Linux Kernel up to 6.6.63/6.11.10/6.12.1 epf-mhi platform_get_resource_byname null pointer dereference

CVE-2024-8133 | D-Link DNS-1550-04 up to 20240814 HTTP POST Request /cgi-bin/hd_config.cgi cgi_FMT_R5_SpareDsk_DiskMGR f_source_dev command injection (SAP10383)