CVE-2026-3481 | burlingtonbytes WP Blockade Plugin up to 0.9.14 on WordPress Endpoint render_shortcode_preview shortcode cross site scripting

Inserito da Angelo Barbosa | Mag 22, 2026 | CVE

A vulnerability classified as problematic has been found in burlingtonbytes WP Blockade Plugin up to 0.9.14 on WordPress. Impacted is the function render_shortcode_preview of the component Endpoint. This manipulation of the argument shortcode causes cross site scripting.

This vulnerability is handled as CVE-2026-3481. The attack can be initiated remotely. There is not any exploit available.

It is recommended to upgrade the affected component.

CVE-2026-3481 | burlingtonbytes WP Blockade Plugin up to 0.9.14 on WordPress Endpoint render_shortcode_preview shortcode cross site scripting

Post correlati

CVE-2024-28111 | thinkst canarytokens prior sha-c595a1f8 Incident Export csv injection

CVE-2020-27352 | Canonical snapd up to 2.48.2 privilege context switching error (USN-4728-1)

CVE-2024-44550 | Tenda AX1806 1.0.0.1 formGetIptv adv.iptv.stbpvid stack-based overflow

CVE-2025-0393 | Royal Elementor Addons and Templates up to 1.7.1006 on WordPress cross-site request forgery