CVE-2026-5508 | theyeti WowPress Plugin up to 1.0.0 on WordPress Shortcode wowpress cross site scripting

Inserito da Angelo Barbosa | Apr 8, 2026 | CVE

A vulnerability classified as problematic was found in theyeti WowPress Plugin up to 1.0.0 on WordPress. This affects the function wowpress of the component Shortcode Handler. The manipulation results in cross site scripting.

This vulnerability is cataloged as CVE-2026-5508. The attack may be launched remotely. There is no exploit available.

CVE-2026-5508 | theyeti WowPress Plugin up to 1.0.0 on WordPress Shortcode wowpress cross site scripting

Post correlati

CVE-2024-20490 | Cisco Data Center Network Manager information disclosure (cisco-sa-ndhs-idv-Bk8VqEDc)

CVE-2025-23571 | Internal Links Generator Plugin up to 3.51 on WordPress cross site scripting

CVE-2025-13742 | pretix prior 2025.7.0/2025.8.0/2025.9.0/2025.10.0 Email Template cross site scripting

CVE-2025-67890 | pkp Open Journal Systems up to 3.3.0-21/3.4.0-9/3.5.0-1 Native XML Plugin NativeXmlIssueGalleyFilter.php writeFile path traversal