CVE-2026-5113 | Gravity Forms Plugin up to 2.10.0 on WordPress Entries List Page wp_kses cross site scripting

Inserito da Angelo Barbosa | Mag 2, 2026 | CVE

A vulnerability, which was classified as problematic, has been found in Gravity Forms Plugin up to 2.10.0 on WordPress. This impacts the function wp_kses of the component Entries List Page. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2026-5113. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2026-5113 | Gravity Forms Plugin up to 2.10.0 on WordPress Entries List Page wp_kses cross site scripting

Post correlati

CVE-2026-0886 | Mozilla Firefox up to 146 Graphics memory corruption

CVE-2022-45792 | Omron Sysmac Studio prior 1.54.0 Project File path traversal

CVE-2026-34428 | givanz Vvveb up to 1.0.8.0 file URL getUrl server-side request forgery

CVE-2023-48752 | Happyforms Form Builder to Get in Touch with Visitors Plugin up to 1.25.9 on WordPress cross site scripting