CVE-2026-0552 | mra13 Simple Shopping Cart Plugin up to 5.2.4 on WordPress Shortcode wpsc_display_product cross site scripting

Inserito da Angelo Barbosa | Apr 4, 2026 | CVE

A vulnerability categorized as problematic has been discovered in mra13 Simple Shopping Cart Plugin up to 5.2.4 on WordPress. Affected by this vulnerability is the function wpsc_display_product of the component Shortcode Handler. Executing a manipulation can lead to cross site scripting.

This vulnerability is registered as CVE-2026-0552. It is possible to launch the attack remotely. No exploit is available.

CVE-2026-0552 | mra13 Simple Shopping Cart Plugin up to 5.2.4 on WordPress Shortcode wpsc_display_product cross site scripting

Post correlati

CVE-2025-64738 | Zoom Workplace/Workplace Meeting SDK prior 6.5.10 on macOS file inclusion

CVE-2025-9770 | Campcodes Hospital Management System 1.0 Admin Dashboard Login /admin/ Password sql injection

CVE-2020-9086 | Huawei 4G Router B612 UPNP Message buffer underflow (huawei-sa-20200826-01)

CVE-2019-25612 | Admin-Express AdminExpress 1.2.5.485 System Compare Feature out-of-bounds write (Exploit 46805 / EDB-46805)