CVE-2026-2600 | roxnor ElementsKit Elementor Addons Plugin up to 3.7.9 on WordPress Simple Tab Widget ekit_tab_title cross site scripting

Inserito da Angelo Barbosa | Apr 4, 2026 | CVE

A vulnerability described as problematic has been identified in roxnor ElementsKit Elementor Addons Plugin up to 3.7.9 on WordPress. This issue affects some unknown processing of the component Simple Tab Widget. Such manipulation of the argument ekit_tab_title leads to cross site scripting.

This vulnerability is traded as CVE-2026-2600. The attack may be launched remotely. There is no exploit available.

CVE-2026-2600 | roxnor ElementsKit Elementor Addons Plugin up to 3.7.9 on WordPress Simple Tab Widget ekit_tab_title cross site scripting

Post correlati

CVE-2024-20143 | MediaTek MT8676 V6 DA out-of-bounds write (MSV-2069 / ALPS09167056)

CVE-2024-23655 | tutao tutanota prior 3.119.10 Email denial of service (GHSA-5h47-g927-629g)

CVE-2025-22377 | Samsung Mobile Processor/Wearable Processor/Modem Exynos up to 9110 GPRS Protocol out-of-bounds write

CVE-2026-1415 | GPAC up to 2.4.0 media_export.c gf_media_export_webvtt_metadata Name null pointer dereference (Issue 3428)