CVE-2026-6447 | tychesoftwares Call for Price for WooCommerce Plugin up to 4.2.0 on WordPress cross site scripting

Inserito da Angelo Barbosa | Mag 2, 2026 | CVE

A vulnerability was found in tychesoftwares Call for Price for WooCommerce Plugin up to 4.2.0 on WordPress. It has been classified as problematic. This affects an unknown part. Performing a manipulation results in cross site scripting.

This vulnerability was named CVE-2026-6447. The attack may be initiated remotely. There is no available exploit.

Upgrading the affected component is recommended.

CVE-2026-6447 | tychesoftwares Call for Price for WooCommerce Plugin up to 4.2.0 on WordPress cross site scripting

Post correlati

CVE-2024-25635 | alf.io prior 2.0-M4-2402 API Endpoint /admin/api/users/ unknown vulnerability (GHSA-ffr5-g3qg-gp4f)

CVE-2024-47692 | Linux Kernel up to 6.11.1 /var/lib/nfs/nfsdcld/ memdup_user null pointer dereference

CVE-2024-47064 | cvat-ai cvat up to 2.18.x cross site scripting (GHSA-hp6c-f34j-qjj7)

CVE-2023-51302 | PHPJabbers Hotel Booking System 4.0 Languages Section Label csv injection