CVE-2026-10553 | weaverlancegmailcom jQuery Hover Footnotes Plugin up to 1.4 on WordPress Setting update_option cross-site request forgery

Inserito da Angelo Barbosa | Giu 9, 2026 | CVE

A vulnerability categorized as problematic has been discovered in weaverlancegmailcom jQuery Hover Footnotes Plugin up to 1.4 on WordPress. Impacted is the function update_option of the component Setting Handler. Such manipulation leads to cross-site request forgery.

This vulnerability is referenced as CVE-2026-10553. It is possible to launch the attack remotely. No exploit is available.

CVE-2026-10553 | weaverlancegmailcom jQuery Hover Footnotes Plugin up to 1.4 on WordPress Setting update_option cross-site request forgery

Post correlati

CVE-2024-8305 | MongoDB Server up to 6.0.16/7.0.12/7.3.3 prepareUnique Index improper validation of consistency within input

CVE-2023-6981 | WP SMS Plugin up to 6.5 on WordPress cross site scripting

CVE-2026-41722 | VMware VCF operations cross site scripting

CVE-2024-43330 | IdeaBox Creations PowerPack for Beaver Builder Plugin up to 2.37.3 on WordPress cross site scripting